Bug with http:// redirect

#1

Description/Error
When using an http (NOT https) redirect url, Zoom will change the redirect_uri param to https and then fail to redirect.

How To Reproduce
Steps to reproduce the behavior:

  1. Setup an application with an http redirect e.g. http://localhost:3000/_/zoom_redirect
  2. Make sure the user is logged out from Zoom
  3. Start the Zoom Oauth Flow by redirecting the user to https://zoom.us/oauth/authorize?client_id=XXX&redirect_uri=http%3A%2F%2Flocalhost%3A3000%2F_%2Fzoom_redirect&response_type=code&state=YYY
  4. Login to Zoom with Google.
  5. Get an Zoom error page (NB https):

Invalid redirect: https://localhost:3000/_/zoom_redirect (4,700)

This is hopefully only an issue for local development but is still pretty annoying!

#2

Hey @ryan,

Can you try this to resolve the issue:

Let me know if this works!

Thanks,
Tommy

#3

It definitely does work, but we’ve had some issues running all of our traffic over ngrok so we’re reserving it just for webhooks. Self-signed certs would also be a solution but a bit of a hassle to set up…

For the time being we’ll put up with the minor annoyance and we’ll look forward to a bug fix.

#4

Hey @ryan,

I was able to reproduce the error. This only happens when signing in with Google. Like you said, it changes http to https.

We will work on fixing this. Thanks again for posting. JIRA: ZOOM-121664

Thanks,
Tommy

1 Like