Having ?code= in the URL logs out users

[jetlej]

Version

@nuxtjs/supabase: 1.1.2
nuxt: 3.7.0

Steps to reproduce

Add a ?code= parameter to any URL while logged in

What is actually happening?

A POST request is sent to https://[id].supabase.co/auth/v1/token?grant_type=pkce, which returns a 403 FORBIDDEN, and then logs the user out.

I'm using the Google API, which must return a ?code URL parameter.

[vachmara]

Hey @jetlej, any news on this?

[vachmara]

To avoid this behavior, I forked @supabase/auth-js to customize the _isPKCEFlow function and exclude some page of my app.

This is temporary until I submit a better flow for PR. If you have any idea on this @jetlej, happy to discuss.

[github-actions]

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 30 days.