<div dir="ltr"><span style="font-size:12.8px">Hi </span><br style="font-size:12.8px"><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><div style="line-height:21.3px;color:rgb(68,68,68);font-family:Calibri,sans-serif;font-size:15px">Not sure if I missed any thing here. But I am getting the following error when fronting keycloak 1.9.0 CR1 with Apache http server. I am running keycloak 1.9.0 CR1 with Wildfly 10. <span style="line-height:21.3px">it is a bug or something I missed in my configuration. My setup is browser -&gt; https -&gt; Apache2 -&gt; ajp -&gt; keycloak 1.9.CR1.</span></div><div><br></div><div style="line-height:21.3px;color:rgb(68,68,68);font-family:Calibri,sans-serif;font-size:15px">The setup and files are taken from keycloak-1.9.0.CR1.tar.gz with no modification apart from adding the ajp listener on start port 8009. </div><div style="line-height:21.3px;color:rgb(68,68,68);font-family:Calibri,sans-serif;font-size:15px"><br style="line-height:21.3px"></div><div style="line-height:21.3px;color:rgb(68,68,68);font-family:Calibri,sans-serif;font-size:15px">Any idea? Thanks. <br style="line-height:21.3px"><div style="line-height:21.3px"><br style="line-height:21.3px"></div><div style="line-height:21.3px"><div style="line-height:21.3px">but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/realm.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/realm.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div><div style="line-height:21.3px"><a href="http://demo.test.com/:1" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">demo.test.com/:1</a> Mixed Content: The page at &#39;<a href="https://demo.test.com/auth/admin/master/console/" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">https://demo.test.com/auth/admin/master/console/</a>&#39; was loaded over HTTPS, but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/clients.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/clients.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div><div style="line-height:21.3px"><a href="http://demo.test.com/:1" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">demo.test.com/:1</a> Mixed Content: The page at &#39;<a href="https://demo.test.com/auth/admin/master/console/" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">https://demo.test.com/auth/admin/master/console/</a>&#39; was loaded over HTTPS, but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/users.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/users.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div><div style="line-height:21.3px"><a href="http://demo.test.com/:1" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">demo.test.com/:1</a> Mixed Content: The page at &#39;<a href="https://demo.test.com/auth/admin/master/console/" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">https://demo.test.com/auth/admin/master/console/</a>&#39; was loaded over HTTPS, but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/groups.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/controllers/groups.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div><div style="line-height:21.3px"><a href="http://demo.test.com/:1" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">demo.test.com/:1</a> Mixed Content: The page at &#39;<a href="https://demo.test.com/auth/admin/master/console/" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">https://demo.test.com/auth/admin/master/console/</a>&#39; was loaded over HTTPS, but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/loaders.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/loaders.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div><div style="line-height:21.3px"><a href="http://demo.test.com/:1" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">demo.test.com/:1</a> Mixed Content: The page at &#39;<a href="https://demo.test.com/auth/admin/master/console/" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">https://demo.test.com/auth/admin/master/console/</a>&#39; was loaded over HTTPS, but requested an insecure script &#39;<a href="http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/services.js" target="_blank" style="color:rgb(0,104,207);line-height:21.3px;font-weight:inherit">http://demo.test.com/auth/resources/1.9.0.cr1/admin/keycloak/js/services.js</a>&#39;. This request has been blocked; the content must be served over HTTPS.</div></div></div></div></div>