cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Invalid redirect https://bookstore did not match one of the registered values

davecor
Explorer

on ‎2023 Dec 04 5:18 PM

0 Kudos
659

Following exacly the bookshop tutorial (https://developers.sap.com/tutorials/cp-cap-java-security-cf.html) I retrieve this error in my authentication step.

My xs-security.json

{
  "xsappname": "bookstore",
  "tenant-mode": "dedicated",
  "scopes": [
    {
      "name": "$XSAPPNAME.Administrators",
      "description": "Administrators"
    }
  ],
  "attributes": [],
  "role-templates": [
    {
      "name": "Administrators",
      "description": "generated",
      "scope-references": [
        "$XSAPPNAME.Administrators"
      ],
      "attribute-references": []
    }
  ],
  "role-collections": [
    {
      "name": "BookStore_Administrators",
      "description": "BookStore Administrators",
      "role-template-references": ["$XSAPPNAME.Administrators"]
    }
  ],
  "oauth2-configuration": {
    "redirect-uris": ["https://api.cf.us10-001.hana.ondemand.com"]
  }
}
How can I solve it?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (2)

Answers (2)

davecor
Explorer
‎2023 Dec 05 10:20 AM
0 Kudos

Thanks a lot to answer me, but I tried with:

  "oauth2-configuration": {
    "redirect-uris": ["https://*.us10-001.hana.ondemand.com"]
  }
and 
  "oauth2-configuration": {
    "redirect-uris": ["https://*.us10-001.hana.ondemand.com/**"]
  }
But I receive from postman in Auth2 request this error:Invalid redirect https://xxxxxxxx-xxxxxxx-xxxxxxxx-by.cfapps.us10-001.hana.ondemand.com did not match one of the registered values
Show replies
Show replies
torstenluh
Advisor
Advisor
‎2023 Dec 18 7:13 AM
0 Kudos

davecor Please check the following documentation:
https://help.sap.com/docs/btp/sap-business-technology-platform/security-considerations-for-sap-autho...

Specifically, "Set the redirect-uris property to restrict access as much as possible.".

Yogananda
Product and Topic Expert
Product and Topic Expert
‎2023 Dec 04 7:21 PM
0 Kudos

davecor

Issue was in line redirect-uri.. you can consider the below and try it ..

redirect-uris": ["https://*.us10-001.hana.ondemand.com"]
{
  "xsappname": "bookstore",
  "tenant-mode": "dedicated",
  "scopes": [
    {
      "name": "$XSAPPNAME.Administrators",
      "description": "Administrators"
    }
  ],
  "attributes": [],
  "role-templates": [
    {
      "name": "Administrators",
      "description": "generated",
      "scope-references": [
        "$XSAPPNAME.Administrators"
      ],
      "attribute-references": []
    }
  ],
  "role-collections": [
    {
      "name": "BookStore_Administrators",
      "description": "BookStore Administrators",
      "role-template-references": ["$XSAPPNAME.Administrators"]
    }
  ],
  "oauth2-configuration": {
    "redirect-uris": ["https://*.us10-001.hana.ondemand.com"]
  }
}
Show replies
Show replies
Ask a Question