We don't enforce the use of HTTPS. Whatever URL you specify in the SAML configuration is what we will use. The identity provider might be causing the redirect to HTTPS. If you trace the HTTP traffic you should be able to confirm this. Assuming this is the case, you would then need to talk to the identity provider about this and they may need to change their configuration so the redirect doesn't occur.
Regards ComponentSpace Development
|