Allowed Callback URLs should not include Localhost

thomaskant · March 17, 2022, 7:57am

Hello,

I just ran a readiness check but it says that Allowed Callback URLs and Web Origins should not include Localhost. I understand that it is not secure leaving localhost in these fields, but how am I supposed to develop updates for my applications if I am not even able to log in from my development environment?

Sincerely,
Thomas Kantartzis

john.gateley · March 17, 2022, 12:59pm

Hi @thomaskant

You can use localhost for dev, the readiness check is just telling you you shouldn’t use it in production. You SHOULD have separate production and dev tenants.

John

thomaskant · March 17, 2022, 1:02pm

Hi @john.gateley

Thank you for your help! I will create a second tenant for development.

Sincerely,
Thomas Kantartzis

konrad.sopala · March 31, 2022, 10:17am

We are here for you Thomas!

Topic		Replies	Views
Why localhost is not recommended as an allowed callback or origin for production? Help	10	10674	December 14, 2022
Security Risks of Using Localhost for Callback URL Knowledge Articles security , localhost , callback-url , security-risk	1	2190	October 18, 2023
Trying to add http://localhost:3000 to "allowed callback URL" gives permission error Help	2	3118	May 31, 2021
limitations on allowed origin Help ui	3	5049	March 2, 2018
Callback URI only working on localhost Help login-experience , signup-prompt-new-experience	0	1130	January 25, 2023

Allowed Callback URLs should not include Localhost

Related topics