julien/coffee
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Replace localhost with 127.0.0.1 in redirect_uris (RFC 8252)

Browse Source 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Julien Calixte
2026-03-28 23:18:32 +01:00
parent 3576ccf976
commit 6167df084f
2 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
public/client-metadata.json
View File

@@ -4,8 +4,8 @@
"client_uri": "https://coffee.apoena.dev",
"redirect_uris": [
"https://coffee.apoena.dev/oauth/callback",
"http://localhost:5173/oauth/callback",
"http://localhost:5174/oauth/callback"
"http://127.0.0.1:5173/oauth/callback",
"http://127.0.0.1:5174/oauth/callback"
],
"grant_types": ["authorization_code", "refresh_token"],
"response_types": ["code"],

5
src/lib/atproto.ts
View File

@@ -5,8 +5,9 @@ import { Agent } from '@atproto/api'
// so the PDS can fetch it — even in local dev.
const PROD_URL = 'https://coffee.apoena.dev'
// redirect_uri is dynamic so local dev redirects back to localhost
const ORIGIN = window.location.origin
// redirect_uri is dynamic so local dev redirects back to the right origin.
// RFC 8252 forbids "localhost" — replace with 127.0.0.1 for loopback.
const ORIGIN = window.location.origin.replace('localhost', '127.0.0.1')
let _client: BrowserOAuthClient | null = null