support IAM sending gunzipped tokens

roles/pep/templates/nginx.default.conf.j2

@@ -57,12 +57,14 @@ server {
     proxy_set_header  Authorization $pep_credentials;
     proxy_set_header  Content-Type "application/x-www-form-urlencoded";
     proxy_pass        "{{ iam_host }}/auth/realms/d4science/protocol/openid-connect/token/introspect";
-  
+    
+    proxy_ignore_headers  Cache-Control Expires Set-Cookie;
+    gunzip on;
+ 
     proxy_cache           token_responses; # Enable caching
     proxy_cache_key       $source_auth;    # Cache for each source authentication
     proxy_cache_lock      on;              # Duplicate tokens must wait
     proxy_cache_valid     200 10s;         # How long to use each response
-    proxy_ignore_headers  Cache-Control Expires Set-Cookie;
   }
   
   location /jwt_request {
@@ -72,6 +74,7 @@ server {
     proxy_set_header  Authorization $pep_credentials;
     proxy_set_header  Content-Type "application/x-www-form-urlencoded";
     proxy_pass        "{{ iam_host }}/auth/realms/d4science/protocol/openid-connect/token";
+    gunzip on;
   }
   
   location /permission_request {
@@ -81,6 +84,7 @@ server {
     proxy_set_header  Content-Type "application/x-www-form-urlencoded";
     proxy_set_header  Authorization "Bearer $auth_token";
     proxy_pass        "{{ iam_host }}/auth/realms/d4science/protocol/openid-connect/token";
+    gunzip on;
   }
 
 }