Allow disabling HTTPS redirection via configuration

src/SendEngine.Api/Program.cs

@@ -33,6 +33,9 @@ if (string.IsNullOrWhiteSpace(jwtAuthority) &&
 }
 var signingKey = builder.Configuration["Jwt:SigningKey"];
 var useOidcJwks = !string.IsNullOrWhiteSpace(jwtAuthority) || !string.IsNullOrWhiteSpace(jwtMetadataAddress);
+var expectedIssuer = builder.Configuration["Jwt:Issuer"];
+var expectedAudience = builder.Configuration["Jwt:Audience"];
+var requireHttpsMetadata = builder.Configuration.GetValue("Jwt:RequireHttpsMetadata", false);
 
 if (!useOidcJwks && string.IsNullOrWhiteSpace(signingKey))
 {
@@ -44,10 +47,6 @@ if (!useOidcJwks && string.IsNullOrWhiteSpace(signingKey))
 builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
     .AddJwtBearer(options =>
     {
-        var expectedIssuer = builder.Configuration["Jwt:Issuer"];
-        var expectedAudience = builder.Configuration["Jwt:Audience"];
-        var requireHttpsMetadata = builder.Configuration.GetValue("Jwt:RequireHttpsMetadata", false);
-
         if (useOidcJwks)
         {
             if (!string.IsNullOrWhiteSpace(jwtAuthority))
@@ -127,7 +126,12 @@ if (app.Environment.IsDevelopment())
     app.UseSwaggerUI();
 }
 
+var enableHttpsRedirection = builder.Configuration.GetValue("HttpsRedirection:Enabled", true);
+if (enableHttpsRedirection)
+{
     app.UseHttpsRedirection();
+}
+
 app.UseAuthentication();
 app.UseAuthorization();
 app.Use(async (context, next) =>