simonfranken/timetracker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ef38578596d06d3c51d2757bf088b35f8aa39130
timetracker/backend/src
History
Simon Franken da0cd302bf Fix OIDC web flow redirect URI not being sent to IDP 
The /login route was not passing an explicit redirect_uri to the IDP for
the web flow, so openid-client would silently pick a default which could
resolve to localhost:3001 if OIDC_REDIRECT_URI was not set.

- AuthSession.redirectUri is now required (non-optional)
- createAuthSession() requires a redirectUri; detects native vs web via
  the timetracker:// scheme prefix instead of presence/absence of the arg
- /login route resolves the URI explicitly: request param for native
  flows, config.oidc.redirectUri for web flows
- getAuthorizationUrl() reads redirect_uri from session, no longer
  accepts it as a separate argument
- handleCallback() uses session.redirectUri directly, removing the
  fallback to config.oidc.redirectUri
2026-02-20 14:32:23 +01:00
..
auth
Fix OIDC web flow redirect URI not being sent to IDP
2026-02-20 14:32:23 +01:00
config
Replace IDP token passthrough with backend-issued JWT for iOS auth
2026-02-19 18:45:03 +01:00
errors
middleware
Add detailed logging to auth flow on backend and iOS
2026-02-19 18:55:00 +01:00
prisma
routes
Fix OIDC web flow redirect URI not being sent to IDP
2026-02-20 14:32:23 +01:00
schemas
increases limit for corrections
2026-02-18 20:32:40 +01:00
services
adds targets
2026-02-18 14:27:44 +01:00
types
update
2026-02-18 16:08:42 +01:00
utils
index.ts
update
2026-02-18 20:18:55 +01:00