Skip to content

fix: use canonical www.codebuff.com URL for fallbacks#840

Open
OmarAlaaeldein wants to merge 1 commit into
CodebuffAI:mainfrom
OmarAlaaeldein:fix/codebuff-app-url-redirect
Open

fix: use canonical www.codebuff.com URL for fallbacks#840
OmarAlaaeldein wants to merge 1 commit into
CodebuffAI:mainfrom
OmarAlaaeldein:fix/codebuff-app-url-redirect

Conversation

@OmarAlaaeldein

Copy link
Copy Markdown

This PR fixes a silent authorization header-stripping issue during local development/testing.

  • Change hardcoded fallback URLs from https://codebuff.com to the canonical https://www.codebuff.com.
  • This prevents the 301 redirect from codebuff.com to www.codebuff.com which causes Node's fetch client to strip the Authorization header for security reasons, resulting in a silent 401 Unauthorized error.

When fallback URLs point to codebuff.com, the server redirects to
www.codebuff.com with a 301 redirect. During this redirect, Node's
fetch client strips the Authorization header (for security reasons),
causing validation/session requests to fail with a 401 Unauthorized.

This changes hardcoded fallbacks to the canonical www.codebuff.com
to avoid redirect-induced credential stripping.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant