During an IdP-Initiated SAML login, the redirect appears to go to the first URL in the list of Allowed Callback URLs for the Default Application configured in the SAML connection's IdP-Initiated Single Sign-On Settings.

The article provides information about whether there is a way to set this redirect_uri to any other value.

• Identity Provider-Initiated Single Sign-On (IdP-Initiated SSO)
• SAML Login

When the IdP-initiated login has completed, the request is then redirected to the first URL listed in the Allowed Callback URLs for the application. However, the login flow redirects to this URL if redirect_uri is set in the Query String section of the IdP-Initiated SSO Settings page. This adds flexibility for cases when there is a set subdomain scheme with a wildcard, and the user should redirect to one specific subdomain.

Related References

• Setting up IdP-Initiated SSO