OAuth2.0 Authorization
Description
We have a Software As A Service product and, when a customer comes on board, they have their own “instance” of the product with its own URL. In the vast majority of cases the URL is a subdomain of our .com domain, i.e. theircompanyname.ourproduct.com. A few like to have it more bespoke to them e.g. ourproduct.theircompanyname.com which then redirects to theircompanyname.ourproduct.com. My development URL is ourproduct.local.
I’ve been really struggling with the Redirect URL for OAuth and OAuth Allow List. I’ve tried to follow the documentation in https://marketplace.zoom.us/docs/guides/auth/oauth/#using-multiple-environments.
The actual redirect URL is /Integration/ZoomAuth, so for theircompanyname.ourproduct.com this would be https://theircompanyname.ourproduct.com/Integration/ZoomAuth
I have set the Development Redirect URL to https://ourproduct.local and added this to the OAuth Allow List. This is working fine.
I have set the Production Redirect URL to https://any.ourproduct.com as per the documentation and also added this to the OAuth Allow List. I have also added to the OAuth Allow List the bespoke URLs e.g. https://ourproduct.theirdomain.com.
For the bespoke URLs, when I navigate to:
https://zoom.us/oauth/authorize?response_type=code&client_id=****&redirect_uri=https://ourproduct.theirdomain.com/Integration/ZoomAuth
I get directed to the Zoom login page which is what I would expect.
However, for the domains that should be covered by “any”, when I navigate to
https://zoom.us/oauth/authorize?response_type=code&client_id=****&redirect_uri=https://theircompanyname.ourproduct.com/Integration/ZoomAuth
I get {"status":false,"errorCode":4700,"errorMessage":"Invalid redirect url","result":null}
I can’t see what I’m doing wrong. Any help would be much appreciated.