Repeated prefix URL

[mdodell]

Hey @janko!

When I was working on implementing Rodauth Omniauth with a Prefix URL, I noticed that when my Omniauth request to /auth/:provider, the redirect URI included the prefix URL twice.

For example,https://www.linkedin.com/oauth/v2/authorization?client_id=86aeer6zhrqq9e&redirect_uri=http://127.0.0.1:3000/api/v1/api/v1/auth/linkedin/callback&response_type=code&scope=r_emailaddress+r_liteprofile&state=SOME_STATE.

As you can see, /api/v1/api/v1 should probably just be /api/v1. I have a sample repository here.

[janko]

Hi, it doesn't seem that omniauth-linkedin-oauth2 strategy is currently compatible with OmniAuth 2.0. There was a change with how request/callback paths are generated, which meant that callback_path now includes the SCRIPT_NAME. The LinkedIn strategy additionally prepends SCRIPT_NAME to callback path, leading to the duplication you're seeing.

In most common Rails installations SCRIPT_NAME will be empty, so this issue won't become apparent, but with the way rodauth-omniauth uses Roda routing, SCRIPT_NAME will be /api/v1 in this case (the prefix will act as a "subdirectory"), so you end up with /api/v1/api/v1. The fix is very simple, you could try to patch the strategy's #callback_url and see if that works.

      def callback_url
        full_host + callback_path
      end