References
Well known URL
https://keycloak.host.name/realms/master/.well-known/openid-configuration
Azure Active Directory Error
AADSTS50011: The redirect URI 'https://sso-dev-next.emetric.net/realms/master/broker/oidc/endpoint' specified in the request does not match the redirect URIs configured for the application 'xxxx-xxxxx-xxxx-xxxxx'. Make sure the redirect URI sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/redirectUriMismatchError to learn more about how to fix this.Resolution
Resolution To fix the issue, follow these steps:
Copy the <GUID> value from the error message. This is your application (client) ID.
Go to the Authentication blade of your application in the Azure portal. You can open the page directly by inserting your application ID as the GUID value in one of the following links:
If this app is owned by an organization (Azure AD tenant), use https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationMenuBlade/Authentication/appId/<GUID>. Make sure that you sign in to the portal by using an administrator account for that organization, or an account that owns the application. If this app is owned by your personal Microsoft (MSA) account, use https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationMenuBlade/Authentication/appId/<GUID>/isMSAApp/true. Make sure that you sign in to the portal by using your personal Microsoft account. Copy the <redirect URI> value from the error message.
Add the redirect URI to the appropriate platform configuration. This might be the web, single page app, or some public/native client platform. Make sure to save the input after the redirect URI is added.
Wait a few minutes, and then send the log-in request again. You should now be able to sign in to the application.
Last updated