I have a problem with the reset password form. The change password email include a link to the reset password form with https prefix, eg.
https://jbspace.domain.com/oauth/auth/enter/xxxxx but on this page, form action links to page with only http protocol eg. http://jbspace.domain.com/oauth/auth/changePassword. This cause an error after the the Change password button is pressed:
Mixed Content: The page at 'https://jbspace.domain.com/' was loaded over HTTPS, but requested an insecure form action 'http://jbspace.domain.com/oauth/auth/changePassword'. This request has been blocked; the content must be served over HTTPS.
Any ideas how to solve this issue?