maybe fix?

Author: phrocker

.gcp.env

@@ -1,4 +1,4 @@
-SENTRIUS_VERSION=1.0.16
+SENTRIUS_VERSION=1.0.17
 SENTRIUS_SSH_VERSION=1.0.2
 SENTRIUS_KEYCLOAK_VERSION=1.0.4
 SENTRIUS_AGENT_VERSION=1.0.11

api/src/main/java/io/sentrius/sso/config/SecurityConfig.java

@@ -39,7 +39,7 @@ public class SecurityConfig {
     private final CustomAuthenticationSuccessHandler successHandler;
     final UserService userService;
 
-    @Value("${https.required:true}") // Default is true
+    @Value("${https.required:false}") // Default is false
     private boolean httpsRequired;
 
 

sentrius-gcp-chart/templates/configmap.yaml

@@ -106,7 +106,7 @@ data:
     spring.security.oauth2.client.registration.keycloak.scope={{ .Values.sentrius.oauth2.scope }}
     spring.security.oauth2.resourceserver.jwt.issuer-uri=https://keycloak.{{ .Values.subdomain }}/realms/sentrius
     spring.security.oauth2.client.provider.keycloak.issuer-uri=https://keycloak.{{ .Values.tenant }}.sentrius.cloud/realms/sentrius
-    server.forward-headers-strategy=native
+    server.forward-headers-strategy=framework
     https.redirect.enabled=true
     https.required=true
   dynamic.properties: |