Currently we deliver with a configuration using http. while this is simpler to support (i.e. no cert deployment/creation), this is not a secure default and should be changed.
(Make default config TLS (incl. JWKS endpoint and add truststores to config))
Currently we deliver with a configuration using http. while this is simpler to support (i.e. no cert deployment/creation), this is not a secure default and should be changed.
(Make default config TLS (incl. JWKS endpoint and add truststores to config))