From 1caac8d7fb8984adfb4e97fe546fc6d9f3d2e750 Mon Sep 17 00:00:00 2001
From: Ricardo Carneiro <ricardoroberto@outlook.com>
Date: Thu, 18 Sep 2025 14:04:28 -0300
Subject: [PATCH] fix: Remove explicit port 443 from OAuth redirect URIs for
 Cloudflare compatibility
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This fixes CORS errors when using Ajax requests after session timeout.
The issue was that redirect_uri included :443 port causing Cloudflare issues.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 src/BCards.Web/Program.cs | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/src/BCards.Web/Program.cs b/src/BCards.Web/Program.cs
index 43dd3ce..e95ecab 100644
--- a/src/BCards.Web/Program.cs
+++ b/src/BCards.Web/Program.cs
@@ -298,6 +298,16 @@ authBuilder.AddGoogle(options =>
 
     options.Events = new OAuthEvents
     {
+        OnRedirectToAuthorizationEndpoint = context =>
+        {
+            // Fix para Cloudflare - remover porta 443 explícita
+            if (!builder.Environment.IsDevelopment())
+            {
+                context.RedirectUri = context.RedirectUri.Replace(":443", "");
+            }
+            context.Response.Redirect(context.RedirectUri);
+            return Task.CompletedTask;
+        },
         OnRemoteFailure = context =>
         {
             var logger = context.HttpContext.RequestServices.GetRequiredService<ILogger<Program>>();