Started getting "Invalid redirect: https://faria.managebac.com/teacher/zoom/pair (4,700)"

Hi @tommy
Copying from my post:

I have https://any.managebac.com/teacher/zoom/pair as “Redirect URL for OAuth” and “https://managebac.com” as a whitelist URL

So you suggest what I already have and what doesn’t work anymore :frowning:

Hey @sergii.iakovyn,

Does it work if you add the sub domain url (https://any.managebac.com) within the whitelist?

I will see if anything changed or there is a bug on our side. (ZOOM-162618)

Thanks,
Tommy

Hi @tommy,

Does it work if you add the sub domain url ( https://any.managebac.com ) within the whitelist?

It does not help. The only way to make it accept the redirect_uri is to have it started from one of whitelisted URLs. It asks for a user consent only if I manually make the redirect URI. In my particular case the accepted URL is https://managebac.com/teacher/zoom/pair instead of https://faria.managebac.com/teacher/zoom/pair, thus, drawing the multitenancy unusable.

Hey @sergii.iakovyn,

Other developers are also reporting this issue. Our engineering team is investigating the root cause.

I will share updates with you as I get them.

Apologies for the inconvenience.

Thanks,
Tommy

Hello, I also have same issue.
In my case, my OAuth app has worked very well.
However, suddenly this issue happened at first two days before (I’m not sure the exact day issue happend).
Other apis using token issued before works well, but only the problem is authorization process.
I think there was no change in my code for a few days… I want to get your help

Here is my App’s info:
App Name: CLASSUM

Whitelist URL:

Publishable URL:
https://zoom.us/oauth/authorize?response_type=code&client_id=EbEZkkRtR3aZzOQgUd7NHA&redirect_uri=https://api.classum.net/v2/zoom/oauth

In real case, we have state query parameter, so this is real error message.
(잘못된 리디렉션 == Invalid redirection)

I hope your check and reply.
Thank you,
Minseong

Hey @dev9, @sergii.iakovyn,

It should be fixed now! :slight_smile:

Please try and let me know if you see any issue.

-Tommy

Hi, @tommy
I found that my publishable URL works again! Thanks for your effort.

However, as mentioned above, I have used query parameter named state in redirect URL to give some information. Even though publishable URL works, if I add query parameter, it still fails.
Is this change intended? If so, can you tell me why this change happened?
Also, I hope any guideline if you can since I should find another way to deliver data to my server ASAP.

EDIT
My state parameter has JSON value, using JSON.stringify().
I leave my failed URL for your check. This is URL for test account & test course.
https://zoom.us/oauth/authorize?response_type=code&client_id=EbEZkkRtR3aZzOQgUd7NHA&redirect_uri=https%3A%2F%2Fapi.classum.net%2Fv2%2Fzoom%2Foauth%3Fstate%3D%7B%22uid%22%3A4644%2C%22courseId%22%3A4971%7D

EDIT 2
I found that just using query parameter is not the case.
I tried simple parameter such as state=1234 to my redirect URL, and it works!
I think some of URI encoded components in my result of JSON.stringify makes some issue.

Thanks you,
Minseong

Hey @dev9,

Happy to hear it is fixed now! :slight_smile:

Yes, you will want to use the state query param and a URL safe value for it.

Thanks,
Tommy

Hi @tommy,

I think there was miscommunication.
In my case, I use state parameter with JSON object, and it DOESN’T FIXED yet.
Please check the url I gave before.

Thanks,
Minseong

Hey @dev9,

Can you give me a sample JSON object so I can reproduce the issue? Your best bet right now is to use a URL safe state parameter. :slight_smile:

Thanks,
Tommy

Hi @tommy

I’m sure it is URL-safe value since it have been worked so far… (maybe until 1 week ago)
Anyway, the parameter is like this:
state={"uid":1,"courseId":1}

Of course we encode this using encodeURIComponent, so the result becomes:
state%3D%7B%22uid%22%3A1%2C%22courseId%22%3A1%7D

The full authorization link is below (The value of courseId & uid is for test):
https://zoom.us/oauth/authorize?response_type=code&client_id=EbEZkkRtR3aZzOQgUd7NHA&redirect_uri=https%3A%2F%2Fapi.classum.net%2Fv2%2Fzoom%2Foauth%3Fstate%3D{"uid"%3A4644%2C"courseId"%3A4971}

I hope you can get enough information from my reply.
If needs more, please let me know.

Thanks,
Minseong

Thanks @tommy. I, however, cannot test it now as we reworked our flow to avoid dependency on multitenancy support.

@tommy , I tested it in our test environment and looks like it is really fixed. Thanks again!

1 Like

Happy to hear! :slight_smile:

Let me know if you need anything else!

-Tommy

Hey @dev9,

Checkout my post here which should fix the issue:

Thanks,
Tommy

Hi, @tommy

If I move my state query param, state doesn’t be delivered to my redirect url.
Only authorization code comes along with URL.

I think it’s weird that @pcvetanov said the problem was solved…
How can state param in authorization url can delivered to redirect url?
Does zoom have any logic to check state param and attach it to redirect url as query param?
Anyway, it DOESN’T WORK for me now…

Always thanks to your reply,
Minseong

I have embed zoom using iframe, and when i put username and click “join” it returns to that page again. It supposed to lead to Password page.
The most strange part is it is working properly in same pcs but not in other pcs.
So far I have tested on like 10 pcs and out of 10, 3 pcs are working and 7 are not working. Please help me.

Hey @codyzeuner94,

Please do not double post. I have replied to you here:

Thanks,
Tommy

Hey @dev9,

The state param should be carried through the whole OAuth process. Zoom handles the state param, not your redirect url. Can you please share steps to reproduce the issue you are seeing when moving the state param please?

Thanks,
Tommy

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.