I’m using Auth0 Classic with Auth0 for PHP library. My site is on Heroku. When I log in from a secure URL (https), I’m taken to a secure Auth0-hosted login page
but after logging in, I’m redirected to my site at a non-secure URL (http) instead of https even though in my Allowed Callback URL specifically specifies an https URL. The applies when I log out. It seems that Auth0 always redirects you to non-secure URLs.
How can I tell Auth0 to always redirect to a secure https URL?