Rules not rewriting Application Callback URL

kivi · November 7, 2018, 4:08pm

We authenticate users to different Callback URL:s to a SAML enabled service. (The URL:s Witch are stored on the user app_metadata).
So I try to do this via Rules using context.samlConfiguration.destination I have also tried using context.samlConfiguration.recipient.
Everything looks great, but redirect_uri is always the same as entered as the Application Callback URL in the application.

Is there anyway of rewriting this in the rules correctly?

nicolas_sabena · November 8, 2018, 11:09am

Hi @kivi.
Rules can’t change the redirect_uri/AssertionConsumerServiceUrl. This is where the application tells Auth0 where to send the response when requesting an authentication, so changing that would break a basic expectation of the protocol.

system · December 8, 2018, 11:09am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.