StormPath Spring Boot Integration - getting secure HTTPS connection is required

147 views Asked by At

Trying to setup the production environment, https connection gets terminated at the NGINX level. In order to accommodate this we have enabled the X-Forwarded-Proto and X-Forwarded-For HTTP Headers in the request.

Also applied code changes as indicated in this following link, https://shuaib.me/stormpath-ssl-termination/

Still receiving the error trying to access the stormpath built-in resources like https://<..>/oauth/token

{ "error": "invalid_request", "message": "A secure HTTPS connection is required for token requests - this is a requirement of the OAuth 2 specification." }

Any help is much appreciated! Thanks

1

There are 1 answers

6
mario On

What version of the Java SDK are you using?. The X-Forwarded-Proto header is supported out of the box since version 1.1.0. If you are using that version (or newer) then there must be other problem; the more info you can provide the better. Thanks