I have noticed that multiple redirect urls(seperated with commas) cause to fail the authorization code flow.

When I registered only one url to api key, there is no problem in the  flow but we have a lot of customers having multiple redirect urls and it is documented as supported.

All of the portal and gateway components are used as ootb version.

Release : 5.0

Component : API PORTAL

The Client is sending the request with multiple redirect URL in it.

This will not work the code is designed to match a single incoming request redirect url against multiple allowed callback url in the application definition.

OAuth does not allow multiple redirect URL in the request as it expects a redirect back to the place where it was called from.