The Spring Security SAML redirect is working as expected but Chrome is throwing a security warning due to the unsecured endpoint in the location header.
location
