Dear SOGo Team,

While setting up OpenID login for SOGo, I noticed that the required SOGo redirect URI isn't mentioned in any of the instructions. That's why I'm reporting this here, so that this information can be added to the instructions.

As an alternative, I looked up the address in the compound URL of the link that initially leads to the OpenID provider. For example, it looks like this:
"https://sogo.domain.tld/SOGo/"

Buit, isn't something missing?
Because when I access this URI, I end up, as expected, at "https://sogo.domain.tld/SOGo/so" and thus back in the SOGo login window.

And if I enter this address as the redirect URI in the OpenID provider anyway, the OpenID login process logically results in a redirect loop (which eventually terminates).

As a workaround, I then enter this address as the redirect URI in the OpenID provider.
If I add to the address, for example:
"/oauth2/callback" (found somewhere)
or "/SOGo/so/oidc/callback" (found in the mailing list),
...the redirect is rejected as invalid.

Unfortunately, I haven't found anything useful about this problem in the mailing list—only the aforementioned non-functional URIs.

Could someone please confirm what a correct redirect URI would be? Or what else should I consider?

My SOGo is version 5.12.4 (build@9a1f640bd211 202511171326) and is running as a container within a Nethserver 8 container orchestrator.

Otherwise, SOGo is a great piece of software and has been running very reliably for years—excellent!

Regards, Yummiweb