- The URL must be an exact match for the redirect URL; query params and trailing slashes will error.
- The URL must be at a domain listed in allowed domains.
- The protocol (
https
) is required. - Wildcards (
*
) are not supported. - If no URLs are listed, users can be redirected to any URL.