Duplicate port number in Google IdP redirect
-
When testing locally with FusionAuth behind a TLS proxy on port 9443, the Google IdP seems to be duplicating the port number, which causes login to fail:
Error 400: invalid_request Request details: redirect_uri=https://auth.local.fittfinder.com:9443:9443/oauth2/callback
That port duplication seems to be generated by FusionAuth during this redirect:
GET https://auth.local.fittfinder.com:9443/oauth2/redirect?client_id=e0da3f10-7efa-4a6b-95f8-fbf4894884b5&identityProviderId=82339786-3dff-42a6-aac6-1f1ceecb6c46&state=... Status: 302 Found Location: https://accounts.google.com/o/oauth2/v2/auth?client_id=991204729861-83kivvrh7odv9b0mbf0qnrd6bvd5p6gm.apps.googleusercontent.com&redirect_uri=https%3A%2F%2Fauth.local.fittfinder.com%3A9443%3A9443%2Foauth2%2Fcallback&response_type=code&scope=email+profile+openid&state=...
Note the
%3A9443%3A9443
in theredirect_uri
. Is this a FusionAuth bug? -
It appears to happen with Facebook too:
https://www.facebook.com/v3.1/dialog/oauth?client_id=465092324593769&redirect_uri=https%3A%2F%2Fauth.local.fittfinder.com%3A9443%3A9443%2Foauth2%2Fcallback&response_type=code&scope=email%2Cpublic_profile&state=...
-
It appears I was running an old version locally (1.30.2). This issue has been fixed as of at least 1.41.2.
-
-
@trevorr said in Duplicate port number in Google IdP redirect:
It appears I was running an old version locally (1.30.2). This issue has been fixed as of at least 1.41.2.