馃悰 Bug Report: redirect to the failure url instead of throwing an error in OAuth2 #4753
Closed
2 tasks done
Labels
bug
Something isn't working
product / auth
Fixes and upgrades for the Appwrite Auth / Users / Teams services.
Milestone
馃憻 Reproduction steps
馃憤 Expected behavior
I would expect to be redirected to the failure url. I have some doubt about if the failure url should have any extra information as for example, we have
USER_BLOCKED
,USER_MISSING_ID
,GENERAL_SERVER_ERROR
and many other errors, and go to the failure url without any other data will be too generic馃憥 Actual Behavior
Currently if we block a user and this user try to login with any OAuth2 provider, you will get a scarry 401 error.
The current implementation makes imposible to catch this error
I have also noted that the error trace shows a lot of information, and some of them could be sensitive.
馃幉 Appwrite version
Version 1.1.x
馃捇 Operating system
Linux
馃П Your Environment
No response
馃憖 Have you spent some time to check if this issue has been raised before?
馃彚 Have you read the Code of Conduct?
The text was updated successfully, but these errors were encountered: