theSage21
commented
4 years ago Thanks for the catch @Shivank98
Our current architecture is a little strange and this was a result of that.
- We maintain a netlify app from the
netlifybranch of this project which specifies a redirect from soa.pyjaipur.org to our heroku app. - This way we can maintain full HTTPS without any costs
- The domain redirect, however, strips the query parameters while redirecting. That's why we were losing the otp tokens.
The link in the email is generated using the env variable BASE_DOMAIN. I've corrected this in our app and otps should now work normally.
shivankgtm
OTP link come as https://soa.pyjaipur.org/otp?q=xxxxxxxxxxxxxxxxxxxxxxxxxxxx from the heroku link of SoA. soa.pyjaupur is still there. should it be like that or pyjaipur-soa.herokuapp.com also both OTPs doesn't work.