Authentication failure! invalid_credentials: OAuth2::Error, redirect_uri_mismatch: Bad Request

[ddlogesh]

I am using hybrid authorization in android client, where there is no concept of providing redirect_uri in client side.
{
"error": "redirect_uri_mismatch",
"error_description": "Bad Request"
}
SO, I am constantly getting the above error. Please help me to resolve the issue.

Is there any better solution other than compromising 'omniauth-oauth2' gem version to 1.3.1 or reducing google-auth security level?

Thanks in advance!

[DEV-jOker]

I am using hybrid authorization in android client, where there is no concept of providing redirect_uri in client side.
{
"error": "redirect_uri_mismatch",
"error_description": "Bad Request"
}
SO, I am constantly getting the above error. Please help me to resolve the issue.

Is there any better solution other than compromising 'omniauth-oauth2' gem version to 1.3.1 or reducing google-auth security level?

Thanks in advance!

Are you able find the solution ?

[ddlogesh]

No, still I couldn't

[matiassalles99]

You have to send a query param redirect_uri as empty string, example:

• https://www...../callback?redirect_uri=
  I recently made a fix in Fix Redirect Uri #414 which did not take into account the redirect_uri when sending the code via request body as json, so right now you should do:
• https://www...../callback?code=example&redirect_uri=

[matiassalles99]

Taken from readme:

Note about mobile clients (iOS, Android)
The documentation at https://developers.google.com/identity/sign-in/ios/offline-access specifies the REDIRECT_URI to be either a set value or an EMPTY string for mobile logins to work. Else, you will run into redirect_uri_mismatch errors.

In that case, ensure to send an additional parameter redirect_uri= (empty string) to the /auth/google_oauth2/callback URL from your mobile device.