Invalid URI error in SPS when defining OIDC RedirectURL
search cancel

Invalid URI error in SPS when defining OIDC RedirectURL

book

Article ID: 137951

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction


When configuring the redirect URI for a new OIDC client, the CA Access Gateway (SPS) returns the error:

  Invalid URI error

on the RedirectURL.

The URI resolves to the server, and an nslookup of the Server is successful.

Why does the CA Access Gateway (SPS) report this error when trying to define the RedirectURL?

 

Cause


The HOST defined in the RedirectURL was not to a top-level domain (Public Domain), so was identified as an "Invalid URI" error.

Only the following top-level domains (Public Domains) listed are considered as valid for the RedirectURL with OIDC, since there would be a concern for security reasons to be redirected to an invalid domain.

The supported top-level domains (Public Domains) are:

  • aero
  • arpa
  • biz
  • com
  • coop
  • edu
  • gov
  • info
  • int
  • mil
  • museum
  • name
  • net
  • org
  • pro

 

Resolution


Create a RedirectURL in a proper top-level domain (Public Domain).

 

Powered by Wolken Software