OpenID: RedirectUri is not registered with the client &state


I’m using the version 2.6.1 in an Ubuntu 20.04 server with NGINX reverse proxy and the openid authentication. Just after enter my credentials, I receive the following error message:

GET https:///login/oauth2/code/shinyproxy?error_description=Error in SAML response processing: RedirectUri is not registered with the client &state=EAd0BE5PZWg1LIt6WDOk8X6vYFziRGdnMcBLhsOLxzU=&error=server_error

I have already applied:

- forward-headers-strategy: native
- secure-cookies: True

- same-site-cookie: None

My NGINX configuration is according to the one suggested in docs:

server {
listen 80;
server_name ${shiny_server_name};
rewrite ^(.*) https://$server_name$1 permanent;

server {
listen 443;
server_name ${shiny_server_name};
access_log /var/log/nginx/shinyproxy.access.log;
error_log /var/log/nginx/shinyproxy.error.log error;

ssl on;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

ssl_certificate /etc/ssl/certs/shinyproxy_initial.crt;
ssl_certificate_key /etc/ssl/private/shinyproxy_initial.key;

location / {

   proxy_http_version 1.1;
   proxy_set_header Upgrade $http_upgrade;
   proxy_set_header Connection "upgrade";
   proxy_read_timeout 600s;

   proxy_redirect    off;
   proxy_set_header  Host              $http_host;
   proxy_set_header  X-Real-IP         $remote_addr;
   proxy_set_header  X-Forwarded-For   $proxy_add_x_forwarded_for;
   proxy_set_header  X-Forwarded-Proto $scheme;


Could you help me to find what is missing?


Hi, I’ve just found the problem, it was the upper and lower case in the callback url. The name of the server was in upper case in AWS Cognito callback url. Now it’s working fine! Have a good day!