Skip to content

Prevent android app from handling oauth routes#13499

Open
dylanjeffers wants to merge 1 commit intomainfrom
android-handle-oauth
Open

Prevent android app from handling oauth routes#13499
dylanjeffers wants to merge 1 commit intomainfrom
android-handle-oauth

Conversation

@dylanjeffers
Copy link
Contributor

@dylanjeffers dylanjeffers commented Dec 17, 2025

These are some recommended changes in lieu of not being able to do negative path patterns in the manifest.

oauth deep link may still get through, and our main-activity attempts to open browser with the url instead.

@changeset-bot
Copy link

changeset-bot bot commented Dec 17, 2025

⚠️ No Changeset found

Latest commit: 4a2eaf5

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

raymondjacobson
raymondjacobson approved these changes Dec 18, 2025
View reviewed changes
Copy link
Member

@raymondjacobson raymondjacobson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tbh, not super super familiar with those this is supposed to work, but i think it looks good to me.

packages/mobile/android/app/src/main/AndroidManifest.xml
<category android:name="android.intent.category.BROWSABLE" />
<data android:scheme="https" />
<data android:scheme="http" />
<data android:host="redirect.audius.co" />
Copy link
Member

@raymondjacobson raymondjacobson Dec 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

just fyi i made changes in the embed player to not use redirect.audius.co, so i think we can probably drop it soon

raymondjacobson
raymondjacobson reviewed Dec 18, 2025
View reviewed changes
packages/mobile/android/app/src/main/AndroidManifest.xml
<data android:scheme="http" />
<data android:host="redirect.audius.co" />
<data android:host="audius.co" />
<data android:pathPrefix="/oauth" />
Copy link
Member

@raymondjacobson raymondjacobson Dec 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

how is this a blacklist? it seems like it would match on this?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@raymondjacobson raymondjacobson raymondjacobson approved these changes

Assignees

No one assigned

Labels

size/M

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dylanjeffers @raymondjacobson