Guide - New Pattern for SSO Redirect URIs

Table of Contents

Product Version


Product To Version




This migration guide applies for, and is not included, refer to Cookbook - Single Sign-On (SSO) | Recipe: Configure Redirect URI | Solution 2 for the original redirect URI pattern.

When using SSO, the ICM must transmit a redirect URI to the identity provider. After the login the identity provider redirects (back) to this redirect URI.

For security reasons, the identity provider only accepts redirect URIs that are known to the identity provider (configured in advance). The pattern for these redirect URIs has been changed and simplified because the old redirects did not take the AppURIIdentifier into account.



Configure your identity provider to work with the redirect URIs following the pattern:


The previously used pattern was:


The information provided in the Knowledge Base may not be applicable to all systems and situations. Intershop Communications will not be liable to any party for any direct or indirect damages resulting from the use of the Customer Support section of the Intershop Corporate Web site, including, without limitation, any lost profits, business interruption, loss of programs or other data on your information handling system.

The Intershop Customer Portal uses only technically necessary cookies. We do not track visitors or have visitors tracked by 3rd parties. Please find further information on privacy in the Intershop Privacy Policy and Legal Notice.
Customer Support
Knowledge Base
Product Resources