Using http://localhost vs https://{fqdn} in Redirect URIs in Oauth2

nvau

Hello, I have tried using http://localhost and also https://{fqdn} at the Redirect URI in Oauth2 set up. Both methods work. I was just wondering though, if I use https://{fqdn}, if the certificate isn't renewed upon expiry will osTicket be unable to access the mailbox, or is this URL only relevant during the set up (and config changes) of the Oauth2 configuration and hence expiry won't by itself cause an issue?
Many Thanks.

KevinTheJedi

nvau

Im not 100% positive about how strict providers are with expired certificates but my guess is it would complain and probably not work but that’s something you can test and/or ask your provider about. So if it doesn’t work with expired certs then it affects everything because in order to authenticate you need an access token and those expire pretty quickly so if it expires or is close to expiration it needs to use the refresh token to get a new access token and refresh token and that needs the callback url to do so.

Cheers.