Thank you @magdaaniol
Following up with the IT team, it seems that (if I understand correctly) before authentication, prodigy sends a request with the following: __prodigy_cauth_id_token__ and __prodigy_cauth_access_token__ . This results in big headers (over 4k) which are blocked by the gateway.
Could you suggest any workaround from prodigy side?