[keycloak-user] Using NGINX as reverse proxy, issuer in token is not using correct protocol
Ushanas Shastri
ushanas at gmail.com
Thu Mar 23 01:04:59 EDT 2017
Hello,
I am using NGINX as a reverse proxy in front of KeyCloak. The protocol
between the client and NGINX is https, but between NGINX and KeyCloak, its
http.
In this case, I have set the X-Forwarded-For and X-Forwarded-Proto headers
in NGINX.
I see that the issuer in the well known configuration remains http, while
it does contain the URL exposed via NGINX.
As a result, the validation on issuer fails.
How do I get to have the issuer as https instead of http?
Regards, Ushanas.
More information about the keycloak-user
mailing list