OAuth Callback URL Mismatch with GitHub/Google Provider
OAuth authentication fails with error 'redirect_uri_mismatch' or callback page shows blank/error. Users cannot sign in via GitHub or Google because the configured redirect URL doesn't match.
OAuth providers validate that the redirect URL matches exactly what was registered. Any difference in protocol, domain, path, or query parameters will cause the mismatch error.
Error Messages You Might See
Common Causes
- Localhost used in development but https://mysite.com in production config
- Port number mismatch (localhost:3000 vs localhost:5173)
- Protocol mismatch (http vs https)
- Trailing slash differences in callback URL
- Using wrong site domain after deployment
How to Fix It
In Supabase dashboard > Authentication > Providers > GitHub/Google, set redirect URLs:
Development: http://localhost:5173/auth/callback
Production: https://yourdomain.com/auth/callback
Create both entries if supporting both environments. Ensure Vite dev server runs on the exact port configured.
Real developers can help you.
Meïr Ankri
Full-stack developer specializing in React / Next.js / Node.js with 6+ years of experience. I've worked across various sectors including automotive (Reezocar/Société Générale), healthcare (Medical Link SaaS), and e-commerce (Glasman). I build web apps end-to-end, from architecture to production, with a focus on scalability, performance, and code quality. I also mentor junior developers and contribute to technical decisions and code reviews.
Kingsley Omage
Fullstack software engineer passionate about AI Agents, blockchain, LLMs.
prajwalfullstack
Hi Im a full stack developer, a vibe coded MVP to Market ready product, I'm here to help
Matthew Butler
Systems Development Engineer @ Amazon Web Services
Yovel Cohen
I got a lot of experience in building Long-horizon AI Agents in production, Backend apps that scale to millions of users and frontend knowledge as well.
Bastien Labelle
Full stack dev w/ 20+ years of experience
Stanislav Prigodich
15+ years building iOS and web apps at startups and enterprise companies. I want to use that experience to help builders ship real products - when something breaks, I'm here to fix it.
Richard McSorley
Full-Stack Software Engineer with 8+ years building high-performance applications for enterprise clients. Shipped production systems at Walmart (4,000+ stores), Cigna (20M+ users), and Arkansas Blue Cross. 5 patents in retail/supply chain tech. Currently focused on AI integrations, automation tools, and TypeScript-first architectures.
Taufan
I’m a product-focused engineer and tech leader who builds scalable systems and turns ideas into production-ready platforms.
Over the past years, I’ve worked across startups and fast-moving teams, leading backend architecture, improving system reliability, and shipping products used by thousands of users. My strength is not just writing code — but connecting product vision, technical execution, and business impact.
PawelPloszaj
I'm fronted developer with 10+ years of experience with big projects. I have small backend background too
You don't need to be technical. Just describe what's wrong and a verified developer will handle the rest.
Get HelpFrequently Asked Questions
Do I need HTTPS for callbacks?
Yes for production. Development with localhost HTTP is allowed. All production URLs must use HTTPS.
How do I use different URLs for dev and prod?
Register both URLs in the OAuth provider settings. Use environment variables to switch between them.