Requirement of HTTPS

Sometimes it's required to run the Atlassian application via HTTPS in combination with our SAML Single Sign On apps.
"Sometimes", because it depends on the Identity Provider.

In general, our SAML Single Sign On apps can be used via HTTP as well as HTTPS and it really doesn't make a technical difference in terms of functionality.
It just uses a different Atlassian Base URL for all the SAML specific information (SAML Endpoint, Metadata, EntityID/ Issuer).

Many SAML Identity Providers like AD FS and Azure AD require SAML service provider endpoints to be secured with HTTPS.
Trying to enter a HTTP URL shows an error/ validation message.

If you encounter this issue, there is no other way to fix this than adding HTTPS support to the Atlassian application (Apache Tomcat).
This can be accomplished by either using a self-signed or a CA-signed certificate.

Please find more details on how to run your Atlassian application over HTTPS in one of the Atlassian documentations below:

Jira: Running Jira applications over SSL or HTTPS
Confluence: Running Confluence Over SSL or HTTPS
Bitbucket: Securing Bitbucket Server with Tomcat using SSL
Bamboo: Securing Bamboo with Tomcat using SSL
Fisheye/Crucible: FishEye SSL configuration

SAML Single Sign-On is available for Atlassian Server & Atlassian Data Center products. Our Jira Data Center, Confluence Data Center, Bitbucket Data Center, Jira Server, Confluence Server, Bitbucket Server and other apps are all available on the Atlassian Marketplace.

SAML Single Sign-On is available for Atlassian Server & Atlassian Data Center products.

Our Jira Data Center, Confluence Data Center, Bitbucket Data Center, Jira Server, Confluence Server, Bitbucket Server and other apps are all available on the Atlassian Marketplace.