s4ntos commented on issue #12648: URL: https://github.com/apache/apisix/issues/12648#issuecomment-3452425296
OK, I have managed to resolve the issue after loads of troubleshooting and tests. The redirect_uri can't match a valid entry point even after authentication. Because our portal after the SSO login would redirect to the same URL as the redirect_uri , the apisix will return with 500 without actually making the request to the backend and will return the error. ``` 2025/10/27 17:06:11 [error] 186388#186388: *212018 [lua] openidc.lua:1098: authenticate(): unhandled request to the redirect_uri: /redirect/Login.aspx, client: 10.71.252.19, server: _, request: "GET /redirect/Login.aspx HTTP/1.1", host: "qual.bogus.com", referrer: "https://login.microsoftonline.com/"; 2025/10/27 17:06:11 [error] 186388#186388: *212018 [lua] openid-connect.lua:680: phase_func(): OIDC authentication failed: unhandled request to the redirect_uri: /redirect/Login.aspx, client: 10.71.252.19, server: _, request: "GET /redirect/Login.aspx HTTP/1.1", host: "qual.bogus.com", referrer: "https://login.microsoftonline.com/"; 2025/10/27 17:06:11 [warn] 186388#186388: *212018 [lua] plugin.lua:1207: run_plugin(): openid-connect exits with http status code 500, client: 10.71.252.19, server: _, request: "GET /redirect/Login.aspx HTTP/1.1", host: "qual.bogus.com", referrer: "https://login.microsoftonline.com/"; ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
