{"type":"doc","content":[{"type":"paragraph","content":[{"text":"Since version 4.2.0, the ","type":"text"},{"text":"OAUTH2.PAR","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"OIDC.SSO","type":"text","marks":[{"type":"strong"}]},{"text":" and ","type":"text"},{"text":"OAUTH2.Token","type":"text","marks":[{"type":"strong"}]},{"text":" profiles support injecting a custom validation logic for the ","type":"text"},{"text":"redirect_uri","type":"text","marks":[{"type":"em"}]},{"text":" -parameter in the request. The bean specified via ","type":"text"},{"text":"customRedirectUriValidationStrategy","type":"text","marks":[{"type":"code"}]},{"text":" must be of type ","type":"text"},{"text":"BiPredicate","type":"text","marks":[{"type":"code"}]},{"text":" where the first parameter contains the requested redirect_uri value.","type":"text"}]},{"type":"paragraph","content":[{"text":"An abstract bean ","type":"text"},{"text":"shibboleth.oidc.MetadataPolicyRedirectUriValidator","type":"text","marks":[{"type":"code"}]},{"text":" is useful for exploiting metadata policies in validation.","type":"text"}]},{"type":"paragraph","content":[{"text":"The following example accepts the requested value is either ","type":"text"},{"text":"https://rp.example.org/cb1","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"https://rp.example.org/cb2","type":"text","marks":[{"type":"code"}]},{"text":":","type":"text"}]},{"type":"codeBlock","content":[{"text":"\n \n \n \n","type":"text"}]},{"type":"paragraph","content":[{"text":"The following example accepts any requested value starting with ","type":"text"},{"text":"https://rp.example.org/","type":"text","marks":[{"type":"code"}]},{"text":":","type":"text"}]},{"type":"codeBlock","content":[{"text":"\n \n \n \n\n","type":"text"}]},{"type":"paragraph"}],"version":1}

Browser not supported