Temporal UI OIDC Self-signed certificate

I am trying to enable authentication with OIDC in temporal UI. The provider I am trying to configure is self-hosted Keycloak. When I run the container with those configurations, I get this message in the logs:

Get “https://xxxxxx/realms/InternalUsers/.well-known/openid-configuration”: x509: certificate signed by unknown authority

How to configure the UI server to accept this certificate?

The error you mention believe would come from the auth library.

I’m not aware of specifics of your setup but here is described a fix for same error in okta community that might help (installing CA cert in the pod/container).