This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 81%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Azure AD B2C does not always respect the redirect_uri specified in the authentication request using the authorization code flow.
Often occurs when you have a dev environment where you want to reuse the same app reg for localhost development but also have a URL when its deployed to the dev environment.
Am I doing something wrong or is this a bug?
Managing external identities to enable secure access for partners, customers, and other non-employees
I wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
The issue still persists, several others are experiencing the same https://learn.microsoft.com/en-us/answers/questions/707365/redirect-uri-returns-wrong-uri. Redirect URIs are very unstable when more than one is registered. Having a single one works fine.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 56.00000000000001%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAB%3C/text%3E%3C/svg%3E)
Take note that it tends to take between 30-60 minutes for Redirect URI changes to propagate in Azure AD B2C.
I can provide a browser trace if strictly needed, but this happens consistently when you have two redirect urls registered. Development on localhost works fine if I only have https://localhost/signin-oidc registered, but when I add a new one one of them breaks.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 21%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENC%3C/text%3E%3C/svg%3E)
I was able to reproduce this simply by getting access tokens from the /authorize endpoint while using custom policies so.....
POST:
https://tenantName.b2clogin.com/tenantName.onmicrosoft.com/OUR-POLICY-NAME/oauth2/v2.0/authorize
I would pass in a callback URL and it would not return the same one or say it doesn't exist in app registration even if I clearly see that it does (and waited a period of time after adding).
I was able to resolve by creating a new App Registration with only a single Redirect URI. Also seemed to help to create a new nonce id.
Very concerning behavior for Mobile App Users since these app registration id's are loaded as build configurations and would require app updates to resolve.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 73%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
I’m seeing same issue.
Authorize request has a valid redirect URL but B2C redirects me to the first one on list :(
Kindly validate the Redirect URL configured in the application code. In the Azure portal, the redirect URIs that you register on the Authentication page for your application need to match these URLs.
If this does not help then we need to have browser trace while trying to reproduce the issue or a fiddler trace would help.
Please do let me know if you have any further queries.
Thanks,
Akshay Kaushik
Please "Accept the answer" (Yes/No), and share your feedback if the suggestion works as per your business need. This will help us and others in the community as well.