Problem statement
During an IdP-Initiated SAML login, the redirect appears to go to the first URL in the list of Allowed Callback URLs for the Default Application that is configured in the IdP-Initiated SSO Settings of the SAML connection. Is there a way to set this redirect_uri to any other value?
Solution
When the IdP-initiated login has completed the request is then redirected to the first URL listed in the Allowed Callback URLs for the application. However, if you set a redirect_uri in the Query String section of the IdP-Initiated SSO Settings page, the login flow redirects to this URL. This adds flexibility for cases when there is a set subdomain scheme with a wildcard and the user should redirect to one specific subdomain.