Invalid Redirect(4700) Error when oAuth flow

App Marketplace
21

Hi tommy,

I encoded the url but still received error

This one is not working: https://zoom.us/oauth/authorize?response_type=code&client_id=C3ECOv6UQXysVDwKV0jN7Q&redirect_uri=https%3A%2F%2F3cx-msteams-api.infisys.io%2FZoom%2FAuth?state=h682%7CM%7D%5D%5BM

But this one works fine: https://zoom.us/oauth/authorize?response_type=code&client_id=C3ECOv6UQXysVDwKV0jN7Q&redirect_uri=https%3A%2F%2F3cx-msteams-api.infisys.io%2FZoom%2FAuth?state=h682abc

22

Hey @thanh.huynh,

For the one that works, did you base64 encode it?

Thanks,
Tommy

23

Hi,

After I base64 encoded the state value, its value became too long
And the site threw 500 error code
Maybe I will try cut some content

24

Thanks for the update @thanh.huynh

Let me know if you find a good middle ground. :slight_smile:

-Tommy

25

Hi tommy,

I still receive Invalid redirect url (4,700) error sometimes
Because you know. Base64 can contain + character
You can read the definition here: https://en.wikipedia.org/wiki/Base64
For example, the following state value will cause error:
TWFuIGlzIGRpc3Rpbmd1aXNoZWQsIG5vdCBvbmx5IGJ5IGhpcyByZWFzb24sIGJ1dCBieSB0aGlz
IHNpbmd1bGFyIHBhc3Npb24gZnJvbSBvdGhlciBhbmltYWxzLCB3aGljaCBpcyBhIGx1c3Qgb2Yg
dGhlIG1pbmQsIHRoYXQgYnkgYSBwZXJzZXZlcmFuY2Ugb2YgZGVsaWdodCBpbiB0aGUgY29udGlu
dWVkIGFuZCBpbmRlZmF0aWdhYmxlIGdlbmVyYXRpb24gb2Yga25vd2xlZGdlLCBleGNlZWRzIHRo
ZSBzaG9ydCB2ZWhlbWVuY2Ugb2YgYW55IGNhcm5hbCBwbGVhc3VyZS4+=

It work fine if redirect url doesn’t contain any + characters

26

Hey @thanh.huynh,

You can also try url encoding your state param: https://www.urlencoder.org/

My suggestion for you is to only have url safe characters in your state param.

Thanks,
Tommy

27

Hi, we faced same issue for our project, but it works a bit weird. One of our customers keeps getting 4700 error, while for other people it works fine. We don’t use any additional parameters in our authorization url, so url is the same for every user. It’s just

https://zoom.us/oauth/authorize?response_type=code&redirect_uri=<our_redirect>&client_id=<our_client_id>

And our redirect_url is also the same for every user, so it’s unclear for us why it works for most of the people, except for one specific person.

Can you please help us with this?

28

Hi @z.olexandr,

Can you send us an email at developersupport@zoom.us with the authorization url being used and an example user/email that receives the error? This will help to take a closer look.

Thanks,
Will