<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><div class=""><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">Hello,</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">I need help with Keycloak over HTTPS...I've started Keycloak with</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">"./standalone.sh -b 10.45.0.6". I have DNS name <a href="http://login.mysite.com" class="">login.mysite.com</a> which points to</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">NGINX listening on a public IP. NGINX is set up as a reverse proxy:</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">server {</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> ssl on;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> listen 443;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> server_name <a href="http://login.mysite.com" class="">login.mysite.com</a>;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> ssl_verify_client off;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_ssl_server_name on;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> location / {</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_set_header X-Real-IP $remote_addr;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_set_header Host $host;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_set_header X-Forwarded-Proto https;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> proxy_pass <a href="http://10.45.0.6:8080" class="">http://10.45.0.6:8080</a>;</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"> }</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">}</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">I can successfully open <a href="https://login.mysite.com/auth/" class="">https://login.mysite.com/auth/</a> (green padlock and</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">everything), but <a href="https://login.mysite.conf/auth/admin/master/console/" class="">https://login.mysite.conf/auth/admin/master/console/</a> fails with</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">"{{notification.header}} {{notification.message}} Loading...". Inspecting the</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">web page I see that a lot of .js files are served over HTTP and the browser</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">complains about mixed content.</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">Reading the docs I figured that setting stuff on the side of reverse proxy is</span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">enough? Do I need to do anything else?</span></font></div></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);"><br class=""></span></font></div><div class="" style="orphans: 2; widows: 2;"><font color="#333333" face="-apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial, sans-serif, Apple Color Emoji, Segoe UI Emoji, Segoe UI Symbol" class=""><span class="" style="font-size: 14px; background-color: rgb(255, 255, 255);">Thanks</span></font></div></body></html>