From dca7a7fde2ba84d952e1986acdda0f1891c848f4 Mon Sep 17 00:00:00 2001
From: Denis Arh <denis.arh@gmail.com>
Date: Tue, 13 Apr 2021 13:42:06 +0200
Subject: [PATCH] Remove RedirectURI provisioning for def. client

This caused too much confusion on simple setup.
For sites that need more secure setup, this can be filled-in at the
later point
---
 pkg/provision/provision.go | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/pkg/provision/provision.go b/pkg/provision/provision.go
index 6d9e6e288..981443df3 100644
--- a/pkg/provision/provision.go
+++ b/pkg/provision/provision.go
@@ -2,7 +2,6 @@ package provision
 
 import (
 	"context"
-	"fmt"
 	"github.com/cortezaproject/corteza-server/pkg/errors"
 	"github.com/cortezaproject/corteza-server/pkg/id"
 	"github.com/cortezaproject/corteza-server/pkg/options"
@@ -11,7 +10,6 @@ import (
 	"github.com/cortezaproject/corteza-server/system/service"
 	"github.com/cortezaproject/corteza-server/system/types"
 	"go.uber.org/zap"
-	url "net/url"
 	"time"
 )
 
@@ -58,9 +56,12 @@ func defaultAuthClient(ctx context.Context, log *zap.Logger, s store.AuthClients
 		},
 		ValidGrant: "authorization_code",
 		RedirectURI: func() string {
-			baseURL, _ := url.Parse(authOpt.BaseURL)
-			return fmt.Sprintf("%s://%s", baseURL.Scheme, baseURL.Hostname())
+			// Disabling protection by redirection URL for now, it caused too much confusion on simple setups
+			//baseURL, _ := url.Parse(authOpt.BaseURL)
+			//return fmt.Sprintf("%s://%s", baseURL.Scheme, baseURL.Hostname())
+			return ""
 		}(),
+
 		Secret:    string(rand.Bytes(64)),
 		Scope:     "profile api",
 		Enabled:   true,