Hello,

Testing SSPR 4.0 with IDM 4.5.4 in a dev environment (upgraded from 3.3).

Noticing something weird after locking the configuration.

If I have a Site URL set then when surfing to
https://idm.mysite.mydomain/sspr (which is my Site URL) it produces an
invalid OAUTH URL:

TRACE, oauth.OAuthConsumerServlet, calculated oauth self end point URI
as 'https://idm.mysite.mydomain/public/oauth' using method SiteURL Setting

If I erase the Site URL then it still produces an invalid OAUTH URL:

TRACE, oauth.OAuthConsumerServlet, calculated oauth self end point URI
as 'https://idm.mysite.mydomain/public/oauth' using method Input Request URL

The correct URL should end with /sspr/public/oauth

OSP doesn't like the /public/oauth (which doesn't even exist).