Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Apple Socialite Provider sends POST Request (Not accepting) #5

Closed
Ssionn opened this issue Apr 10, 2024 · 7 comments
Closed

Apple Socialite Provider sends POST Request (Not accepting) #5

Ssionn opened this issue Apr 10, 2024 · 7 comments

Comments

@Ssionn
Copy link

Ssionn commented Apr 10, 2024
edited
Loading

I have this issue where the route for the callback is not accepting the POST Request. What do I change in the routes() function to fix this issue? Adding the URI in VerifyCsrfToken.php doesn't work for some reason. It doesn't want to disable the csrf. It basically it only has to do with the routing.

Issue:
CleanShot 2024-04-10 at 10 25 28@2x

Routes function:

public function routes(): void
    {
        Route::name('auth.driver.redirect')
            ->whereIn('driver', array_keys($this->handlers))
            ->get('auth/{driver}/redirect', [AuthController::class, 'redirect']);

        Route::name('auth.driver.callback')
            ->whereIn('driver', array_keys($this->handlers))
            ->get('auth/{driver}/callback', [AuthController::class, 'callback']);
    }

VerifyCsrfToken.php:

<?php

namespace App\Http\Middleware;

use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;

class VerifyCsrfToken extends Middleware
{
    protected $except = [
        'stripe/*',
        'auth/apple/callback',
    ];
}
@Ssionn
Copy link
Author

Ssionn commented Apr 10, 2024

Update:

I've made a possible fix for this:

public function routes(): void
    {
        Route::name('auth.driver.redirect')
            ->whereIn('driver', array_keys($this->handlers))
            ->get('auth/{driver}/redirect', [AuthController::class, 'redirect']);

        Route::name('auth.driver.callback')
            ->whereIn('driver', array_keys($this->handlers))
            ->match(['post', 'get'], 'auth/{driver}/callback', function ($driver) {
                return app(AuthController::class)->callback($driver);
            });
    }

@stevebauman
Copy link
Member

Hi @Ssionn,

That's strange, I don't think that's typical OAuth operation, as providers issue a redirect to your callback route, which in turn is a GET request. Where have you registered your routes?

@stevebauman
Copy link
Member

Ah okay I think I see that here as well: https://github.com/patrickbussmann/oauth2-apple

If this resolves your issue, let me know and I can patch it to match on post/get and then make a new release 👍

@Ssionn
Copy link
Author

Ssionn commented Apr 11, 2024

Using laravel's match works pretty good. Haven't had any issue with the POST Request since.

@stevebauman
Copy link
Member

stevebauman commented Apr 11, 2024
edited
Loading

Ok thanks for confirming @Ssionn! I've just released v1.0.4 containing a patch for this.

Run composer update and you're all set 🙏

@Ssionn
Copy link
Author

Ssionn commented Apr 11, 2024
edited
Loading

Oh yeah, the funny part of all of this; Apple is the only one using post requests for this from what I can find. 😒

@stevebauman
Copy link
Member

lol figures eh! Appreciate the detailed issue and helping me get this patched 🙏

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@stevebauman @Ssionn