Related Documents
Document Properties
KbidA29781
Last Modified28-Jan-2021
Added to KB28-Jan-2021
Public AccessEveryone
StatusOnline
Doc TypeGuidelines, Concepts & Cookbooks
ProductICM 7.10

Guide - 7.10.26.4 New Pattern for SSO Redirect URIs

Product Version

7.10

Product To Version

7.10
Status

final

1 Introduction

Note

This migration guide applies for 7.10.26.4, 7.10.27.1 and 7.10.28.0.

7.10.27.0 is not included, refer to Cookbook - Single Sign-On (SSO) | Recipe: Configure Redirect URI | Solution 2 for the original redirect URI pattern.

When using SSO, the ICM must transmit a redirect URI to the identity provider. After the login the identity provider redirects (back) to this redirect URI.

For security reasons, the identity provider only accepts redirect URIs that are known to the identity provider (configured in advance). The pattern for these redirect URIs has been changed and simplified because the old redirects did not take the AppURIIdentifier into account.

1.1 References

2 Migration

Configure your identity provider to work with the redirect URIs following the pattern:

https://<host>:<port>/INTERSHOP/web/<servergroup>/root/-/-/-/OpenIDConnect-DispatchCallback

The previously used pattern was:

https://<host>:<port>/INTERSHOP/web/<servergroup>/<site>/-/-/-/OpenIDConnectLogin-Callback

Disclaimer

The information provided in the Knowledge Base may not be applicable to all systems and situations. Intershop Communications will not be liable to any party for any direct or indirect damages resulting from the use of the Customer Support section of the Intershop Corporate Web site, including, without limitation, any lost profits, business interruption, loss of programs or other data on your information handling system.

Customer Support
Knowledge Base
Product Resources
Tickets