I am trying to setup OIDC authentication in Odoo 17 Community.  The system parameter web.base.url​ and web.base.url.freeze​are already set to https://foo.bar.baz​ and TRUE​ respectively.

However, from the IDP side, the referrer URI / redirect URI still shows as insecure HTTP (http://foo.bar.baz​) thereby causing the IDP to reject the authentication request.

HTTPS capability is provided via Nginx, and proxy_mode=True​ is already set in /etc/odoo.conf​.

In my Nginx configuration, I also have:

server {

    if ($host = foo.bar.baz) {

        return 301 https://$host$request_uri;

    } # managed by Certbot

    listen 80;

    server_name foo.bar.baz;

    return 404; # managed by Certbot

}

Is there anything else I might be missing that causes the referrer URI / redirect URI to remain the insecure HTTP instead of HTTPS?  I do not have an option in the IDP to allow insecure referrer URI, and I think it is also not a very good idea.