KevinTheJedi
Ok, finally got it working.
Few things - the rewrites of /api/.htaccess were effectively hiding what the real issue was.
In another thread I can't find now, you'd suggested (after a caution that that file shouldn't be changed, as it shouldn't) to try this setting instead of pasting into the browser address - this can now be backed out:
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} (.*/api)
RewriteRule .*$ %1/http.php/$1 [R,L]
</IfModule>
The fellow was adding a /http.php/ value to the response from adding OAuth2 Microsoft into the browser, so he was updating the redirect to: https://domain.com/api/http.php/etc///
Setting the [R,L] in /api/.htaccess allowed me to see the actual issue:
- curl error 60: ssl certificate problem: unable to get local issuer certificate windows
After trying to put these values under [curl] and [openssl] in php.ini, it continued to fail no matter what I did:
curl.cainfo ="c:\php8\ssl\cacert.pem"
openssl.cafile="c:\php8\ssl\cacert.pem"
Resolution was to move those lines outside those stanzas - just put them by the extension= list and viola, issue is fixed.
Takeaway here is that if anyone is bumping into this or similar rewrite issues, try the [R,L] option to narrow down the root cause.
Thanks much KevinTheJedi!
