Currently there is no way to configure the ssl-required property in the OIDC subsystem. It is hardcoded to "external"

It would be useful for certain cases to allow the possibility to set it to "none" or "all". In certain PaaS deployments pods are not assigned internal IPs (this is not a common use case but one rather hard to troubleshoot) e.g. 172.128.0.0/14 and even though they are running in the same namespace and using the service or pod to pod communication, authentication between services will fail with the following error

SSL is required to authenticate. Remote address 172.129.2.142 is secure: false, SSL required for: EXTERNAL .

In such specific cases it should be justified to allow set the value to "none"