Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

feature request: Support wildcards in redirect URIs

See original GitHub issue

What problem did you meet?

I am developing my application using gitpod.io and the application’s url changes with every new workspace. Hence I do not know the exact redirect URI. I do not want to change it every time.

I’ve already tried using wildcards like https://*.gitpod.io, though I always got redirect_uri did not match any of the client's registered redirect_uris error message

Describe what you’d like Logto to have

It would be great if logto supported wildcards in redirect URIs. Like: https://*.gitpod.io

Issue Analytics

  • State:closed
  • Created a year ago
  • Reactions:1
  • Comments:5 (2 by maintainers)

github_iconTop GitHub Comments

1reaction
simeng-licommented, Oct 28, 2022

Hi, Monika thanks for using Logto.

First of all, redirect URIs are used not only just for post-sign-in or post-sign-out redirection purposes but also play an important security role in OAuth2.0 to prevent phishing attacks. Wildcard redirect URIs are a violation of the OAuth2 spec. .

The redirection endpoint URI MUST be an absolute URI

Back to your cases, there are a couple of things that cross my mind:

  1. Our admin console does allow you to provide multiple redirect URIs for your application. Whenever your workspace address changes you just need to add a new one or replace the old one using the Admin Console.
  2. As for the SDK, maybe you could set a global env variable that will pick up the workspace host address URL dynamically. Then pass it to the Logto SDK configs.
0reactions
github-actions[bot]commented, Nov 19, 2022

This issue is stale because it has been open for 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Feature Request: Allow wildcard subdirectory for redirect uri ...
Hi all We'd like to propose a change of behavior regarding Redirect URLs. We use the proposed method right now in a customized...
Read more >
Wildcards in Redirect URIs - PingOne - Ping Identity
You can choose to allow a wildcard in the Redirect URI. Rather than entering an exact URI, you can use a wildcard to...
Read more >
[KEYCLOAK-5943] Support wildcards in Valid Redirect URIs
Support wildcards in Valid Redirect URIs ... Type: Feature Request ... KEYCLOAK-6454 Wildcard should not be permitted in scheme or hostname part of...
Read more >
Allow for wildcards in app redirect URIs | Community Ideas
Allow for wildcards in app redirect URIs. When testing our app, sometimes we'll use a redirect URI that appends a canary branch.
Read more >
Redirect URI wildcard in path instead of subdomain?
Hi, I am trying to leverage the redirect URI wildcard functionality. ... I receive a 400 Bad Request error that states: "Your request...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

Remove the scan progress

Next page

feature request: search user by IDs/usernames/phones/emails