Update

1 files changed, 4 insertions, 3 deletions

diff --git a/oauth/index.php b/oauth/index.php
index 3a98390..b58c9ed 100644
--- a/oauth/index.php
+++ b/oauth/index.php
@@ -19,8 +19,9 @@ curl_setopt($crl, CURLOPT_HTTPHEADER, [
     "Content-Type: application/x-www-form-urlencoded",

     "Accept: application/json"

 ]);

-curl_setopt($crl, CURLOPT_POSTFIELDS, "grant_type=authorization_code&redirect_uri=" . urlencode("https://" . $_CONFIG["Global"]["domain"] . "/oauth") . "&code=" . $_GET['code']);

+curl_setopt($crl, CURLOPT_POSTFIELDS, "grant_type=authorization_code&redirect_uri=" . urlencode("https://" . $_CONFIG["Global"]["domain"] . "/oauth/?r=" . $_GET['r']) . "&code=" . $_GET['code']);

 

+var_dump("grant_type=authorization_code&redirect_uri=" . urlencode("https://" . $_CONFIG["Global"]["domain"] . "/oauth/?r=" . $_GET['r']) . "&code=" . $_GET['code']);

 $result = curl_exec($crl);

 var_dump($result);

 $result = json_decode($result, true);

@@ -46,7 +47,7 @@ if (isset($result["access_token"])) {
     $result["name"] = $result["family_name"] . " " . $result["given_name"];

     $result["id"] = $result["sub"];

     file_put_contents($_SERVER['DOCUMENT_ROOT'] . "/private/tokens/" . $token, json_encode($result));

-    setcookie("FL_SESSION_TOKEN", $token, strtotime('+365 days'), "/", "." . $_CONFIG["Global"]["domain"], true, true);

+    setcookie("FL_SESSION_TOKEN", $token, 0, "/", "." . $_CONFIG["Global"]["domain"], true, true);

 

-    header("Location: /");

+    header("Location: " . $_GET['r']);

 }
\ No newline at end of file