redirect_uri parameter validity should be checked first to avoid unwanted redirections
In OpenID Connect, the parameter redirect_uri is checked against oidcRPMetaDataOptionsRedirectUris, but this is done too late in the code, and we can have a redirect with a previous error on an unwanted URL.