fix: getAuthorizationUrl calls don't always include custom redirectUr…

…i set in middleware (#209)
workos · Feb 27, 2025 · b436606 · b436606
1 parent 6baafd3
commit b436606
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/src/session.ts b/src/session.ts
@@ -126,6 +126,12 @@ async function updateSession(
   // `pathname` to be able to return the users where they came from before sign-in
   newRequestHeaders.set('x-url', request.url);
 
+  if (options.redirectUri) {
+    // Store the redirect URI in a custom header, so we always have access to it and so that subsequent
+    // calls to `getAuthorizationUrl` will use the same redirect URI
+    newRequestHeaders.set('x-redirect-uri', options.redirectUri);
+  }
+
   newRequestHeaders.delete(sessionHeaderName);
 
   if (!session) {