Thanks, Lucas. We looked at the headers being passed back (that's what the jsp was for). Even with http completely disabled and https only available, they were still passed as http:80 by nGinx...but Apache passed them through. We tried this on two separate environments.
I looked at the ajp module. Unfortunately, it's not in any repository and custom builds are frowned upon for our systems.