OpenID: RedirectUri is not registered with the client &state

Hello,

I’m using the version 2.6.1 in an Ubuntu 20.04 server with NGINX reverse proxy and the openid authentication. Just after enter my credentials, I receive the following error message:

GET https:///login/oauth2/code/shinyproxy?error_description=Error in SAML response processing: RedirectUri is not registered with the client &state=EAd0BE5PZWg1LIt6WDOk8X6vYFziRGdnMcBLhsOLxzU=&error=server_error

I have already applied:

server:
- forward-headers-strategy: native
- secure-cookies: True

proxy:
- same-site-cookie: None

My NGINX configuration is according to the one suggested in shinyproxy.io docs:

server {
listen 80;
server_name ${shiny_server_name};
rewrite ^(.*) https://$server_name$1 permanent;
}

server {
listen 443;
server_name ${shiny_server_name};
access_log /var/log/nginx/shinyproxy.access.log;
error_log /var/log/nginx/shinyproxy.error.log error;

ssl on;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

ssl_certificate /etc/ssl/certs/shinyproxy_initial.crt;
ssl_certificate_key /etc/ssl/private/shinyproxy_initial.key;

location / {
proxy_pass http://127.0.0.1:8080/;

   proxy_http_version 1.1;
   proxy_set_header Upgrade $http_upgrade;
   proxy_set_header Connection "upgrade";
   proxy_read_timeout 600s;

   proxy_redirect    off;
   proxy_set_header  Host              $http_host;
   proxy_set_header  X-Real-IP         $remote_addr;
   proxy_set_header  X-Forwarded-For   $proxy_add_x_forwarded_for;
   proxy_set_header  X-Forwarded-Proto $scheme;
 }

}

Could you help me to find what is missing?

Thanks

Hi, I’ve just found the problem, it was the upper and lower case in the callback url. The name of the server was in upper case in AWS Cognito callback url. Now it’s working fine! Have a good day!