redirect

app/routes/auth.py

@@ -36,30 +36,27 @@ async def login(request: Request):
     return RedirectResponse(authorization_url)
 
 
-@router.get("/auth/callback")
+@router.get("/auth/callback") 
 async def auth_callback(request: Request):
     """Handle OAuth callback from Google with ?code= and ?state=."""
     state = request.session.get("state")
     if not state:
         return HTMLResponse("<h1>Session state not found. Please /login again.</h1>", status_code=400)
-
+    
     flow = create_flow()
-    # flow.fetch_token(authorization_response=str(request.url))
-
-    flow.redirect_uri = GOOGLE_REDIRECT_URI  # optional, for clarity
-
-    # IMPORTANT: pass `redirect_uri` again here:
+    flow.redirect_uri = GOOGLE_REDIRECT_URI  # Set the redirect_uri here instead
+    
+    # Remove the redirect_uri parameter from fetch_token
     flow.fetch_token(
-        authorization_response=str(request.url),
-        redirect_uri=GOOGLE_REDIRECT_URI
+        authorization_response=str(request.url)
+        # Don't pass redirect_uri here, as it's already set on the flow object
     )
-
-    # Get the credentials object
+    
+    # Rest of your code remains the same
     credentials = flow.credentials
     if not credentials or not credentials.valid:
         return HTMLResponse("<h1>Invalid credentials. Please /login again.</h1>", status_code=400)
-
-    # Store credentials in session. In production, store securely (e.g. in DB, encrypted).
+    
     request.session["credentials"] = {
         "token": credentials.token,
         "refresh_token": credentials.refresh_token,
@@ -68,5 +65,5 @@ async def auth_callback(request: Request):
         "client_secret": credentials.client_secret,
         "scopes": credentials.scopes
     }
-
+    
     return RedirectResponse(url="/success", status_code=status.HTTP_302_FOUND)