OAuth Redirect Maze: Debug Login Across Environments Without Guesswork

Untangle callback URLs, cookies, scopes, clock skew, and provider configuration mistakes.

Mixed · 2 hours · October 25, 2026 · June 3, 2026

#oauth#authentication#cookies

Description

section.description

Login works locally, fails in staging, and breaks differently in production. Participants debug an OAuth flow with mismatched redirect URLs, wrong cookie domains, missing scopes, expired state, clock skew, and confusing provider error messages.

The lab teaches a disciplined way to inspect auth flows without leaking secrets: capture safe request facts, compare environment config, verify callback handling, and document exactly which party rejected the login and why.

support.yml

member support

1 supporter

Community members who want this event to happen.

Support

Propose

proposal.yml

Proposal Details

Status

Proposed

Difficulty

Mixed

Duration

2 hours

Target date

October 25, 2026

Created

June 3, 2026

Ubuntu TechHive

OAuth Redirect Maze: Debug Login Across Environments Without Guesswork

Description

member support

Proposal Details

Back to Event Proposals

OWASP Top Ten for Builders: Practical Web Security Review