From f8879d646cd36df83b194d09132506ae06e728e1 Mon Sep 17 00:00:00 2001
From: smarcet <smarcet@gmail.com>
Date: Tue, 9 Jun 2020 16:16:14 -0300
Subject: [PATCH] Fixed OAuth2 client allowed uri test

Change-Id: I0d12255811b9deadc952f5ccda83e88c367b4b67
Signed-off-by: smarcet <smarcet@gmail.com>
---
 app/Models/OAuth2/Client.php | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/app/Models/OAuth2/Client.php b/app/Models/OAuth2/Client.php
index 592f841b..231aab0b 100644
--- a/app/Models/OAuth2/Client.php
+++ b/app/Models/OAuth2/Client.php
@@ -589,7 +589,13 @@ class Client extends BaseEntity implements IClient
         )
             return false;
 
-        return str_contains(strtolower($this->redirect_uris), URLUtils::normalizeUrl($uri));
+        $redirect_uris = explode(',',strtolower($this->redirect_uris));
+        $uri = URLUtils::normalizeUrl($uri);
+        foreach($redirect_uris as $redirect_uri){
+            if(str_contains($uri, $redirect_uri))
+                return true;
+        }
+        return false;
     }
 
     public function getApplicationName()