I have created a Keycloak plugin that allows me to create Action Tokens via the REST interface. However, the tokens are created with the incorrect protocol (http instead of https) for the Issuer claim and Audience claim URLs. The domain and remaining parts of the URLs are correct.
This problem does not arise when requesting an Authorisation Token. Any thoughts?