From 67c2c40e8d0e1a69175bd306f5de816549145024 Mon Sep 17 00:00:00 2001
From: mb-wali <44528277+mb-wali@users.noreply.github.com>
Date: Fri, 2 Jan 2026 09:41:34 +0100
Subject: [PATCH] Change force_https setting from True to False

---
 invenio.cfg | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/invenio.cfg b/invenio.cfg
index 2bf9fdc..4a342a5 100644
--- a/invenio.cfg
+++ b/invenio.cfg
@@ -60,7 +60,7 @@ APP_DEFAULT_SECURE_HEADERS = {
     "content_security_policy_report_only": False,
     "content_security_policy_report_uri": None,
     "force_file_save": False,
-    "force_https": True,
+    "force_https": False,
     "force_https_permanent": False,
     "frame_options": "sameorigin",
     "frame_options_allow_from": None,