OIDC Partenership and dynamic Redirect URI
search cancel

OIDC Partenership and dynamic Redirect URI


Article ID: 277037


Updated On:


SITEMINDER CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Federation (SiteMinder)


Implementing OIDC partnership with Policy Server and CA Access Gateway (SPS) acting as Authorization Provider:

  • How to set different target url for the same client?
  • How to configure the client to have a dynamic Redirect URI for the same client? The dynamic Redirect URI isn't predictable.



In the AdminUI, from the OIDC Client configuration page, it's possible to dress a table of possible Redirect URIs for a specific client (1).

The OIDC client (requester) should provide an OIDC Redirect URI.

Note that the use of wildcards isn't possible at the moment, and the full URL's should be defined in the mapping.

  • When leaving the Redirect URIs parameter empty and saving the configuration, the AdminUI returns an error in the browser:

    Error: Redirect URI should not be empty

  • When setting a Redirect URI with a wildcard in the Redirect URIs parameter such as:


    clicking on the "Add" button, the AdminUI returns another error:

    Invalid URI format

    and the configuration cannot be saved;

To get that functionality enhanced, to accept wildcards and such dynamic Redirect URIs, open an Enhancement Request (Idea) (2).


Additional Information


  1. Redirect URIs
  2. Creating an Idea/Enhancement Request for SiteMinder