Topics created by francis.ducharme

@francis-ducharme Glad you figured it out, and thanks for sharing.

@francis-ducharme

To confirm, you are:

Sending the user to a page such as: https://local.fusionauth.io/oauth2/authorize?client_id=85a03867-dccf-4882-adde-1a79aeec50df&response_type=code&redirect_uri=https%3A%2F%2Fthird.com The user will click login with Google or be redirected automatically to Google (if using an idp_hint, for instance)

In this case, FusionAuth will redirect to https://third.com (example only) but could just as easily redirect to https://fourth.com depending on step one. In either case, all possible redirect URLs for your application need to be previously defined on the OAuth configuration for that application.

Also, we do have a few github issues allowing a wildcard to be defined for a redirect URL.

https://github.com/FusionAuth/fusionauth-issues/issues/437

With more context, I might be able to provide additional feedback. Depending on context, deeplinking might also be something worth exploring

https://www.youtube.com/watch?v=-vx5rdy-mvY

Thanks,
Josh

@dan said in Wrong logout URL being returned ?:

@francis-ducharme What is your setting for logoutBehavior for each application config? All applications or redirect only?

By default it is 'all applications' which means that FusionAuth, on logout, will call each application's logout url (to ensure that the user is logged out of all applications). It does this via an iframe, so I'd expect both to be requested. https://fusionauth.io/docs/v1/tech/guides/single-sign-on#configure-the-applications-in-fusionauth has a bit more.

I'm not sure why you are ending up at localhost for the dev app, though.

That was it. All my application's logout behavior were set to "All Applications". "Redirect" only made it so the browser doesn't get redirected to "localhost".

Thanks!