OpenID connect redirect URI mismatch

Description

The current trunk fails to successfully authenticate against OpenID-connect providers as it incorrectly includes query and/or fragment in the callback URIs, which is not allowed.

We should ensure that the query/fragment part is stripped from the callback URI before passing it to the OpenID connect provider.

Activity

Show:
Jan Willem Janssen
June 14, 2017, 8:13 AM

Fixed by always removing the query string and fragment from the callback URI.

Done

Assignee

Unassigned

Reporter

Jan Willem Janssen