Introduction

Note

This migration guide applies for 7.10.26.4, 7.10.27.1 and 7.10.28.0.

7.10.27.0 is not included, refer to Cookbook - Single Sign-On (SSO) | Recipe: Configure Redirect URI | Solution 2 for the original redirect URI pattern.

When using SSO, the ICM must transmit a redirect URI to the identity provider. After the login the identity provider redirects (back) to this redirect URI.

For security reasons, the identity provider only accepts redirect URIs that are known to the identity provider (configured in advance). The pattern for these redirect URIs has been changed and simplified because the old redirects did not take the AppURIIdentifier into account.

References

Migration

Configure your identity provider to work with the redirect URIs following the pattern:

https://<host>:<port>/INTERSHOP/web/<servergroup>/root/-/-/-/OpenIDConnect-DispatchCallback

The previously used pattern was:

https://<host>:<port>/INTERSHOP/web/<servergroup>/<site>/-/-/-/OpenIDConnectLogin-Callback

Disclaimer

The information provided in the Knowledge Base may not be applicable to all systems and situations. Intershop Communications will not be liable to any party for any direct or indirect damages resulting from the use of the Customer Support section of the Intershop Corporate Web site, including, without limitation, any lost profits, business interruption, loss of programs or other data on your information handling system.

Table of Contents

Introduction

References

Migration