Currently keycloak only supports wildcards for the redirectURI, which hands down is insecure as-it-is. Is there a way to add a regex(I know it’s not officially supported, but has anyone tried a workaround for that). Any suggestions would be appreciated!
Having any type of placeholder in a redirect uri is considered insecure. Redirect URIs must only be compared using an exact string matching, according to RFC 9700 - Best Current Practice for OAuth 2.0 Security