Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1
Fixed In:
13.1.0
Opened: Mar 07, 2017 Severity: 3-Major
Configuring port using number or session variable on the OAuth Client agent redirection URI is not allowed.
OAuth Client redirection URI cannot be modified to contain custom HTTPS port number
If HTTPS port is different from 443 then, redirection URI needs to specify port using port number or port session variable.
Create a session variable containing both fqdn and custom port number and specify that in client redirection URI in OAuth Client agent.
Now the OAuth Client agent redirection URI accepts session variables for configuration of hostname and port, for example: https://%{session.server.network.name}:%{session.server.network.port}/oauth/client/redirect'.