Menu
I'm having an issue configuring multiple callback urls for a Service Provider in WSO2 Identity Server. This process is necessary for my team to support SLO (Single Logout) with a post logout redirect url.
The WSO2 online documentation describes the correct way to do this process here. I have followed those step and configured my Callback URL as follows:
regexp=(http://localhost:8080/login-callback|http://localhost:8080/logout-callback)
This process works, and I am able to configure the two Callback URLs.
Once the callback urls are configured, the checksession endpoint stops working. The error message I get from the endpoint says "Invalid OP IFrame Request". That checksession call uses a url like this: https://<wso2host>/oidc/checksession?client_id=<clientid>
I verified that the checksession endpoint works if I configure either of my redirect urls individually
But fails if I use the regexp syntax. Failure occurs in each of these scenarios:
Am I missing a configuration step needed for either the callback urls or the checksession endpoint?
591
asked Sep 06 '25 11:09
I ended up finding the solution from a hint in the WSO2 logs.
When multiple callback urls are defined, the request for the checksession endpoint must specifiy a callback url as well. The correct checksession reqeust for my scenario was:
https://<wso2host>/oidc/checksession?client_id=<clientid>&redirect_uri=<redirecturi>
151
answered Sep 11 '25 06:09
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With