@cloudflare/workers-oauth-provider 0.0.0-239e753 → 0.0.0-68e3f97

package/dist/oauth-provider.js

@@ -736,7 +736,7 @@ var OAuthProviderImpl = class {
     } else if (isRefreshToken) {
       await this.createOAuthHelpers(env).revokeGrant(grantId, userId);
     }
-    return new Response("", { status: 500 });
+    return new Response("", { status: 200 });
   }
   /**
    * Revokes a specific access token without affecting the refresh token
@@ -1174,15 +1174,16 @@ var OAuthHelpersImpl = class {
     const state = url.searchParams.get("state") || "";
     const codeChallenge = url.searchParams.get("code_challenge") || void 0;
     const codeChallengeMethod = url.searchParams.get("code_challenge_method") || "plain";
+    if (!redirectUri.startsWith("http://") && !redirectUri.startsWith("https://")) {
+      throw new Error("Invalid redirect URI");
+    }
     if (responseType === "token" && !this.provider.options.allowImplicitFlow) {
       throw new Error("The implicit grant flow is not enabled for this provider");
     }
     if (clientId) {
       const clientInfo = await this.lookupClient(clientId);
       if (!clientInfo) {
-        throw new Error(
-          `Invalid client. The clientId provided does not match to this client.`
-        );
+        throw new Error(`Invalid client. The clientId provided does not match to this client.`);
       }
       if (clientInfo && redirectUri) {
         if (!clientInfo.redirectUris.includes(redirectUri)) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cloudflare/workers-oauth-provider",
-  "version": "0.0.0-239e753",
+  "version": "0.0.0-68e3f97",
   "description": "OAuth provider for Cloudflare Workers",
   "main": "dist/oauth-provider.js",
   "types": "dist/oauth-provider.d.ts",
@@ -28,6 +28,7 @@
     "@changesets/changelog-github": "^0.5.1",
     "@changesets/cli": "^2.29.5",
     "@cloudflare/workers-types": "^4.20250807.0",
+    "pkg-pr-new": "^0.0.59",
     "prettier": "^3.6.2",
     "tsup": "^8.5.0",
     "tsx": "^4.20.3",