fix(middleware): use relative URL for sign-in page callbackUrl (#4534)

* Use relative URL for middleware's signin callbackUrl * Include params to callbackUrl if any * For testing purpose, append params to existing link for test instead of create another one * Update apps/dev/components/header.js Co-authored-by: CODY Mai <nhan.mai@shiftasia.com> Co-authored-by: Thang Vu <31528554+ThangHuuVu@users.noreply.github.com>
nextauthjs · May 31, 2022 · 75602a3 · 75602a3 · thevuong · Jun 11, 2022
1 parent 5b8a619
commit 75602a3
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/packages/next-auth/src/next/middleware.ts b/packages/next-auth/src/next/middleware.ts
@@ -101,7 +101,7 @@ async function handleMiddleware(
 
   // the user is not logged in, redirect to the sign-in page
   const signInUrl = new URL(signInPage, req.nextUrl.origin)
-  signInUrl.searchParams.append("callbackUrl", req.url)
+  signInUrl.searchParams.append("callbackUrl", `${req.nextUrl.pathname}${req.nextUrl.search}`)
   return NextResponse.redirect(signInUrl)
 }