I am using okta spring boot starter. When I successfully run it locally and deploy it to the server, this situation occurs. When I request an interface in the Java service, I will send a http://{domain}/oauth2/authorization/okta request to the okta server, followed by an https://{domain}/oauth2/authorization/okta request. I want to know why HTTP requests occur, and I want to avoid them. This problem has been bothering me for several days. Can anyone help me? Thank you very much
Hi there,
You should be sending https requests at all times. If at any time in your flow if you are sending http (without ssl) requests, you will have to review the configuration.
We would recommend checking the URLs you have setup in your application properties. Also check if the server has required ssl cert setup.
Please share screenshots of the configuration and HTTP/s urls you are seeing on your side.
