redirect_uri has "/#/" redirect will go wrong.

Question

redirect_uri has "/#/" redirect will go wrong.

z960112559 opened this issue 4 years ago · 1 comments

z960112559 commented 4 years ago

The redirect address I set contains "/#/", the code parameter position is wrong when redirecting.

My redirect uri: http://localhost:8082/#/work-portal/index

Actual redirect uri: http://localhost:8082/?code=0EnqTg#/work-portal/index

Answer 1 · 2020-12-08T12:03:08.000Z

@z960112559 The redirect_uri is not allowed a fragment component, as per spec:

The redirection endpoint URI MUST be an absolute URI as defined by
[RFC3986] Section 4.3. The endpoint URI MAY include an
"application/x-www-form-urlencoded" formatted (per Appendix B) query
component ([RFC3986] Section 3.4), which MUST be retained when adding
additional query parameters. The endpoint URI MUST NOT include a
fragment component.

FYI, the fragment component is removed when building the authorization response redirect.

Closing as this is expected behaviour.