got it…=C2=A0 looking through the code now to see which URL we’re usi=
ng for the authorization redirect.=C2=A0 Will advise when I determine if we =
need to make any changes to the code.
wow, that=
‘s crazy that your lockdown lasted so long (or was this a new one?).=C2=A0=
Yeah, I keep waiting for things to be anywhere close to normal, but I have=
a feeling that this is going to end up being the new normal for a couple mo=
re years…=C2=A0 oh well, just hope to make the best of it as we can, I su=
ppose…=C2=A0 =C2=A0=C2=A0
Russell O’Buch
Carolina IT Systems
info@carolina-it.com
336-745=
-7746
—— Original Message ——
From: “Support@JTT” <support@justtabletennis.com.au>
To: “Russell O’Buch” <info@=
carolina-it.com>
Sent: 12/13/2021 12:15:55 PM
Subject: Re: New Strict URL Matching Requirement for oAuth
Hello Russell,
We have only just been released from lockdown. It=E2=80=
=99s been crazy down under, especially in my state.=C2=A0
You installed square credit card payments earlier on, and yes we=
use it a lot.=C2=A0
Regards
Robe=
rt Katsipis
Sent from my iPhone
On 14 Dec 2021, at 2:56 am, Russell O’Buch &=
lt;info@carolina-it.com> wro=
te:
=
=EF=BB=BF
Robert, happy holidays!
Are you using Square as a payment method on the ATT site?=C2=A0 I ca=
n’t remember…=C2=A0 Because if you’re not using Square on ATT, then we’re =
all set with that site and no changes are needed.=C2=A0 If you are using S=
quare there, then yes, we will likely have to take a look to ensure that ou=
r redirects are up to their new standards.
and t=
he latest I saw is that osCommerce 4 is now in beta testing with a planned=
release in January 2022.=C2=A0 So my fingers are crossed that we get the lo=
ng awaited/delayed release of the new system sooner rather than later…=C2=
=A0 been too long a wait as it is…
Russell O’Buch
Carolina IT Systems
info@carolina-it.com
336-745=
-7746
—— Original Message ——
From: “Support@JTT” <support@justtabletennis.com.au>
To: “Russell O’Buch” <info@=
carolina-it.com>
Sent: 12/10/2021 5:26:32 PM
Subject: Fwd: New Strict URL Matching Requirement for oAuth
=
Hello Russell, hope your well,
I received the email below in regards to =
our justtabletennis site, does it mean we may have to change something on=
the ATT site.=C2=A0
Also waiting patiently for t=
he new version of oscommerce to be released.=C2=A0
Regards
Robert Katsipis
Sent from my iPhone
Begin forwarded message:
From: Square Developer =
<noreply@messaging.sq=
uareup.com>
Date: 11 December 2021 at 6:30:51 am AEDT
To: support@jus=
ttabletennis.com.au
Subject: New Strict URL Matching Req=
uirement for oAuth
Reply-To: noreply@messaging.squareup.com
=EF=BB=
=BF =20
![]()
=C2=A0
![]()
=C2=A0
=
=
We are making a change to how our oAuth service handles the redirect URL. Currently the redirect URL co=
nfigured in the Developer Dashboard only needs to match a subset of the URL =
passed in the Authorization request.
=C2=A0
Current S=
tate Example
If the redirect URL in the Developer Dashboard is configured to: https://example.com/
=C2=A0
And the redirect_uri parameter in the authorization re=
quest is: https://connec=
t.squareup.com/oauth2/authorize?client_id=3Dabcd-1234-zyxw&scope=3DPAYM=
ENTS_READ&redirect_uri=3Dhttps://example.com/oauth-redirect
=C2=A0
Then the reque=
st succeeds because the first part of the redirect_uri parameter matches th=
e configured redirect URL.
=C2=A0
After February 14th, =
2022, the redirect URL sent in the Authorization request must exa=
ctly match the redirect URL in the Developer Dashboard or it will error.
=C2=A0
Exact Match Example
If the redirect_uri parameter in th=
e authorization request is:
https://conn=
ect.squareup.com/oauth2/authorize?client_id=3Dabcd-1234-zyxw&scope=3DPA=
YMENTS_READ&redirect_uri=3Dhttps://example.com/oauth-redirect
=C2=A0
Then the redirect URl in the Developer Dashboard must be configured =
to:
https://connect.square=
up.com/oauth2/authorize?client_id=3Dabcd-1234-zyxw&scope=3DPAYMENTS_REA=
D&redirect_uri=3Dhttps://example.com/oauth-redirect
=C2=A0
To prepare for this change, y=
ou need to update the Developer Dashboard to match the URL in the Authoriza=
tion request. If all of your Authorization requests already match the Devel=
oper Dashboard-set redirect URL, you do not need to take any action. If you =
have any questions or concerns please reach out to us via Slack, our forums, or developer support.=C2=A0
=
![]()
=C2=A9 2021 Square, Inc. All rights reserved.
1455 Market Street, Ste 600
San Francisco, CA 94103
Unsubscribe or Manage Email Preferences
=C2=A0
=
![]()
=20
![]()
