Index: branches/TaskRewrite/src/grails-app/conf/BootStrap.groovy
===================================================================
--- branches/TaskRewrite/src/grails-app/conf/BootStrap.groovy	(revision 70)
+++ branches/TaskRewrite/src/grails-app/conf/BootStrap.groovy	(revision 71)
@@ -63,10 +63,10 @@
         def authInstance
 
-        authInstance = new Authority(description:"Application Admin",
-                                        authority:"ROLE_ADMIN")
+        authInstance = new Authority(description:"Application Admin, grants full admin access to the application.",
+                                        authority:"ROLE_AppAdmin")
         BootStrapSaveAndTest(authInstance)
 
-        authInstance = new Authority(description:"Application Admin",
-                                        authority:"ROLE_USER")
+        authInstance = new Authority(description:"Application User, all application users need this base role.",
+                                        authority:"ROLE_AppUser")
         BootStrapSaveAndTest(authInstance)
             
Index: branches/TaskRewrite/src/grails-app/conf/SecurityConfig.groovy
===================================================================
--- branches/TaskRewrite/src/grails-app/conf/SecurityConfig.groovy	(revision 70)
+++ branches/TaskRewrite/src/grails-app/conf/SecurityConfig.groovy	(revision 71)
@@ -20,5 +20,5 @@
 
     //Set true especially if used across the internet.
-    forceHttps = 'true'
+    forceHttps = 'false'
 
     //Pessimistic locking, deny access to all URLs that don't