| ▲ | Tade0 2 hours ago | ||||||||||||||||
Having dealt with similar problems on the implementation side it's incredible how in this day and age it's still so difficult to pass state through sign-in or sign-up. Half of the reason appears to be how the Oauth 2.0 standard is written - it purposefully forbids browser-specific items like the hash fragment in the URL. For passing state you have the "state" field but, despite the name, its original purpose was to prevent XSRF attacks, not store data. Vendor libraries don't go to huge lengths to help here, as they settle on complying with the standard. | |||||||||||||||||
| ▲ | ImHereToVote 2 hours ago | parent [-] | ||||||||||||||||
Why not just use OPFS? | |||||||||||||||||
| |||||||||||||||||