dashboard icon indicating copy to clipboard operation
dashboard copied to clipboard
verified publisher icon netbirdio

fix(auth): correctly handle non-fragment callbacks

Open SF2311 opened this issue 2 months ago • 1 comments

According to https://datatracker.ietf.org/doc/html/rfc6749#section-3.1.2 OIDC callback URLs must not contain a fragment component. Thus, some OIDC providers (at least mine) don't support this, but setting the callback to a path results in 404 from the web server because no actual page exists there.

This PR adds two pages /auth and /silent-auth to allow error-free handling of the callback. It should thereby resolve #398.

SF2311 avatar Oct 20 '25 17:10 SF2311

CLA assistant check
All committers have signed the CLA.

CLAassistant avatar Oct 20 '25 17:10 CLAassistant