The core issue we're facing:
Unable to process callback and complete authorization code flow due to state variable not passed back. The state variable(is returned empty) from Clover side.
Overview
- Authentication flow begins from Our Side (The customer click’s a link inside Our Portal to kick-start the OAuth flow)
- We implemented OAuth 2.0 flow using Sandbox environment/Account (using code not Token) and we were able to conduct and validate an end to end OAuth flow with Clover successfully.
- We then moved to production same code-base in sandbox but (using our production APP ID & APP Secret) we start facing the issue mentioned above.
Steps we took so far but the issue still exist
- We ensured Our app has been installed on customer merchant's account before attempting the OAuth flow. and the issue still exist.
- We ensured having the same callback URL for both microservice & our Integration APP inside Clover
Example of callback format we are receiving (Show’s state being empty)
- Unable to process callback and complete authorization code flow ?merchant_id=X X X X X X X X X X X X X &employee_id=XX X X X X X X X X X X X &state=&client_id=X X X X X X X X X X X X X &code=X X X X X X X X -X X X X -X X X X -X X X X -X X X X X X X X X X X X
*Values been replaced with X for security
