/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
After the Framework Update, you noticed that during the OAuth2 Authorization Code flow, the Location header returned by POST /authorizationserver/login contains the internal SAP Commerce Cloud domain instead of the public CDN storefront domain passed via the X-Forwarded-Host request header.
All other steps in the flow including GET /authorize redirects and Access-Control-Allow-Origin CORS headers correctly reflect the public domain. Only the post-login redirect is affected.
Read more...
Environment
SAP Commerce Cloud JDK21
Product
SAP Commerce Cloud 2211 for JDK21
Keywords
OAuth2 Authorization Code Flow, CDN, Internal Domain , KBA , CEC-SCC-PLA-PL , Platform , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)