Callback fails with 400 in nextjs application

timtellos · October 17, 2023, 8:04pm

Hi,

I have a nextjs application that I set up using this quickstart guide Auth0 Next.js SDK Quickstarts: Login

I have a strange issue where when run locally everything is fine, but in production I am getting a consistent 400 error. I have uploaded a HAR file, I can see that the auth_verification cookie is not set (it is set when I run this locally) - what am I missing here? I also notice that Referer is set to https://www.telloshq.com which is odd, we don’t have a www subdomain. How is that being set?
auth0loginfail.har (1.6 MB)

timtellos · October 18, 2023, 9:55pm

Ok I got it - the problem was that the browsers were adding www to the url, so the login call was setting the cookies on the www subdomain. Then because our baseurl doesn’t have www, the callback was to the base domain, so the cookies were not passed along, causing the error. I solved it by adding an nginx 301 redirect on the www domain to force all login calls to go to the base domain. Phew.

Topic		Replies	Views
Pre-lab: Project Setup DevDay	1	14	September 27, 2024
Overriding Base URL and redirecting to new callback URL not working Help login-experience , new-universal-login-experience	0	379	May 28, 2024
NextJS on Auth0 fails with "Missing state cookie from login request" Help sessions , authentication-sessions	2	4307	September 13, 2024
Auth0 NextJS invalid_grant (Failed to verify code verifier) Help login-experience , new-universal-login-experience	0	214	June 13, 2024
Next.js login fails with custom domain in hosts file, but not localhost Help reports , support-center	3	20	November 7, 2024

Callback fails with 400 in nextjs application

Related Topics