Allow OAuth 2 to redirect to plain HTTP for localhost

2021-04-20 18:52:57 +01:00 · 2021-04-20 18:52:57 +01:00 · aa9ce8b6db
commit aa9ce8b6db
parent f064a18a16
1 changed files with 3 additions and 1 deletions
--- a/config/initializers/doorkeeper.rb
+++ b/config/initializers/doorkeeper.rb
@ -241,7 +241,9 @@ Doorkeeper.configure do
  # #call can be used in order to allow conditional checks (to allow non-SSL
  # redirects to localhost for example).

-  force_ssl_in_redirect_uri !Rails.env.development?
+  force_ssl_in_redirect_uri do |uri|
+    !Rails.env.development? && uri.host != "127.0.0.1"
+  end

  # Specify what redirect URI's you want to block during Application creation.
  # Any redirect URI is whitelisted by default.