I'm running Rock on HTTP (unencrypted) IIS, but I have it proxied behind NGINX which is encrypted.

Trying to make sure Rock always uses HTTPS for its links, I enabled Site Encryption under the CMS settings, but now the pages won't load.

I'm getting "too many redirect" errors. Clearly, when I access https://mysite, NGINX gets the request and proxies it to http://rockinstall, but Rock sees the unencrypted access and tries to redirect to https which starts the whole cycle over again.

I have two questions:

1. What is the right way to make sure Rock serves all assets over https? (this is specifically a problem in the api browser)

2. How can I change the setting back to unencrypted so I can access my site again?