[GH-ISSUE #1580] errorCallbackURL is not working it is ignored on error #8827

New Issue

GiteaMirror · 2026-04-13T04:03:00-05:00

GiteaMirror commented

2026-04-13 04:03:00 -05:00

Originally created by @rohittiwari-dev on GitHub (Feb 26, 2025).
Original GitHub issue: https://github.com/better-auth/better-auth/issues/1580

Is this suited for github?

toNextJsHandler causes file scan outside project directory leading to EPERM on Windows during next build (#1581)

To Reproduce

most probably this is due to callback api route and in my case code is not generated as i cancel the process to choose another account

logger do print access_denied and error_description=undefined but it do not redirect it

Current vs. Expected behavior

Current :

it is ignoring errorCallbackURL in social signing process even if it is passed and redirecting it to api default error page

expected
it should redirect to the callbackurl passed in social loging

await authClient.signIn.social(
	{
		provider: "google",
		callbackURL: "/dashboard",
		errorCallbackURL: "/sign-in",
	},
	{
		onRequest: () => {
			setIsOAuthLogin(true);
		},
		onError: (ctx) => {
			setIsOAuthLogin(false);
			toast.error(ctx.error.message);
		},
	},
);

in my case it should redirect it to signing page with queries code and description as designed

What version of Better Auth are you using?

1.1.21

Provide environment information

- OS : Windows
- Browser : Chrome

Which area(s) are affected? (Select all that apply)

Client

Auth config (if applicable)

export const auth = betterAuth({
	appName: "Notespace",
	database: drizzleAdapter(db, {
		provider: "pg",
		schema: {
			...schema,
			user: schema.UserTable,
			account: schema.ConnectedAuthProvidersTable,
			session: schema.UserAuthSessionTable,
			verification: schema.UserAuthVerificationTable,
		},
	}),
	emailAndPassword: {
		enabled: true,
		autoSignIn: true,
		requireEmailVerification: true,
	},
	emailVerification: {
		sendOnSignUp: true,
		autoSignInAfterVerification: true,
		sendVerificationEmail: async ({ user, url }) => {
			await sendEmail({
				to: user.email,
				subject: "Verify your email address",
				text: `Click the link to verify your email: ${url}`,
			});
		},
	},
	socialProviders: {
		google: {
			clientId: process.env.GOOGLE_CLIENT_ID as string,
			clientSecret: process.env.GOOGLE_CLIENT_SECRET as string,
		},
	},
	plugins: [openAPI()],
} satisfies BetterAuthOptions);

Additional context

Images for reference :

Originally created by @rohittiwari-dev on GitHub (Feb 26, 2025). Original GitHub issue: https://github.com/better-auth/better-auth/issues/1580 ### Is this suited for github? - [x] #1581 ### To Reproduce ![Image](https://github.com/user-attachments/assets/35165233-df4a-453c-a401-9a04b88b1cfa) most probably this is due to callback api route and in my case code is not generated as i cancel the process to choose another account logger do print access_denied and error_description=undefined but it do not redirect it ### Current vs. Expected behavior Current : it is ignoring errorCallbackURL in social signing process even if it is passed and redirecting it to api default error page expected it should redirect to the callbackurl passed in social loging ```typescript await authClient.signIn.social( { provider: "google", callbackURL: "/dashboard", errorCallbackURL: "/sign-in", }, { onRequest: () => { setIsOAuthLogin(true); }, onError: (ctx) => { setIsOAuthLogin(false); toast.error(ctx.error.message); }, }, ); ``` in my case it should redirect it to signing page with queries code and description as designed ### What version of Better Auth are you using? 1.1.21 ### Provide environment information ```bash - OS : Windows - Browser : Chrome ``` ### Which area(s) are affected? (Select all that apply) Client ### Auth config (if applicable) ```typescript export const auth = betterAuth({ appName: "Notespace", database: drizzleAdapter(db, { provider: "pg", schema: { ...schema, user: schema.UserTable, account: schema.ConnectedAuthProvidersTable, session: schema.UserAuthSessionTable, verification: schema.UserAuthVerificationTable, }, }), emailAndPassword: { enabled: true, autoSignIn: true, requireEmailVerification: true, }, emailVerification: { sendOnSignUp: true, autoSignInAfterVerification: true, sendVerificationEmail: async ({ user, url }) => { await sendEmail({ to: user.email, subject: "Verify your email address", text: `Click the link to verify your email: ${url}`, }); }, }, socialProviders: { google: { clientId: process.env.GOOGLE_CLIENT_ID as string, clientSecret: process.env.GOOGLE_CLIENT_SECRET as string, }, }, plugins: [openAPI()], } satisfies BetterAuthOptions); ``` ### Additional context Images for reference : ![Image](https://github.com/user-attachments/assets/d2f03754-f3e0-4ece-abc9-b0006a5450e3) ![Image](https://github.com/user-attachments/assets/e732b905-d567-4165-846b-d1e1315c6013)

GiteaMirror added the locked bug labels 2026-04-13 04:03:00 -05:00

GiteaMirror closed this issue

2026-04-13 04:03:01 -05:00

GiteaMirror commented

2026-04-13 04:03:02 -05:00

@rohittiwari-dev commented on GitHub (Feb 27, 2025):

@Bekacru please help me on this its really important when it comes to maitaining a design system and neither i can modify default ui nor this feature is working

@rohittiwari-dev commented on GitHub (Feb 27, 2025): @Bekacru please help me on this its really important when it comes to maitaining a design system and neither i can modify default ui nor this feature is working

GiteaMirror commented

2026-04-13 04:03:03 -05:00

@rohittiwari-dev commented on GitHub (Feb 27, 2025):

Awsome thanks but when can this be released , i used better auth on production actually waiting for this fix

@rohittiwari-dev commented on GitHub (Feb 27, 2025): Awsome thanks but when can this be released , i used better auth on production actually waiting for this fix

GiteaMirror commented

2026-04-13 04:03:04 -05:00

@rohittiwari-dev commented on GitHub (Mar 2, 2025):

when using this

// Client Auth
import { createAuthClient } from "better-auth/react";
import { nextCookies } from "better-auth/next-js";

export const authClient = createAuthClient({
	baseURL: process.env.BETTER_AUTH_URL,
	plugins: [nextCookies()],
});

and doing social api call like

await authClient.signIn.social(
			{
				provider: "google",
				callbackURL: "/dashboard",
				errorCallbackURL: "/sign-in",
			},
			{
				onRequest: () => {
					setIsOAuthLogin(true);
				},
				onError: (ctx) => {
					setIsOAuthLogin(false);
					toast.error(ctx.error.message);
				},
			},
		);

it should redirect to errorCallbackURL right in v1.2.0

it is not redirecting
@Bekacru can you help me out

@rohittiwari-dev commented on GitHub (Mar 2, 2025): when using this ```typescript // Client Auth import { createAuthClient } from "better-auth/react"; import { nextCookies } from "better-auth/next-js"; export const authClient = createAuthClient({ baseURL: process.env.BETTER_AUTH_URL, plugins: [nextCookies()], }); ``` and doing social api call like ```typescript await authClient.signIn.social( { provider: "google", callbackURL: "/dashboard", errorCallbackURL: "/sign-in", }, { onRequest: () => { setIsOAuthLogin(true); }, onError: (ctx) => { setIsOAuthLogin(false); toast.error(ctx.error.message); }, }, ); ``` it should redirect to errorCallbackURL right in v1.2.0 it is not redirecting @Bekacru can you help me out

GiteaMirror commented

2026-04-13 04:03:04 -05:00

@rohittiwari-dev commented on GitHub (Mar 2, 2025):

@Bekacru ?

@rohittiwari-dev commented on GitHub (Mar 2, 2025): @Bekacru ?

GiteaMirror commented

2026-04-13 04:03:05 -05:00

@szilardx commented on GitHub (Apr 6, 2025):

I have this issue with 1.2.5 - setting errorCallbackURL not working using google social login.
Would it be possible to demonstrate proper usage on the nextjs demo?
Thank you!

@szilardx commented on GitHub (Apr 6, 2025): I have this issue with 1.2.5 - setting errorCallbackURL not working using google social login. Would it be possible to demonstrate proper usage on the nextjs demo? Thank you!

GiteaMirror commented

2026-04-13 04:03:06 -05:00

@ryuheechul commented on GitHub (Apr 16, 2025):

also experiencing errorCallbackURL being ignored on user canceling the sign in (with Google) with better-auth 1.2.7.

@ryuheechul commented on GitHub (Apr 16, 2025): also experiencing `errorCallbackURL` being ignored on user canceling the sign in (with Google) with _better-auth 1.2.7_.

GiteaMirror commented

2026-04-13 04:03:07 -05:00

@vinkovsky commented on GitHub (Apr 16, 2025):

same here

@vinkovsky commented on GitHub (Apr 16, 2025): same here

GiteaMirror commented

2026-04-13 04:03:09 -05:00

@stewones commented on GitHub (Jun 1, 2025):

same

@stewones commented on GitHub (Jun 1, 2025): same

GiteaMirror commented

2026-04-13 04:03:11 -05:00

@asynchroza commented on GitHub (Jun 6, 2025):

Any update here?

@asynchroza commented on GitHub (Jun 6, 2025): Any update here?

GiteaMirror commented

2026-04-13 04:03:13 -05:00

@asynchroza commented on GitHub (Jun 6, 2025):

After revisiting the PR which is supposedly closing this issue, I figured that the newly developed option only allows onAPIError which is a global endpoint for when the API route fails.

import {
    betterAuth
} from 'better-auth';
import { dialect } from '~/database/client';
import { env } from '~/env';

export const auth = betterAuth({
    socialProviders: {
        google: {
            clientId: env.GOOGLE_CLIENT_ID,
            clientSecret: env.GOOGLE_CLIENT_SECRET
        },
        facebook: {
            clientId: env.FACEBOOK_CLIENT_ID,
            clientSecret: env.FACEBOOK_CLIENT_SECRET
        }
    },
    database: dialect,
    onAPIError: {
        errorURL: "/login"
    }
});

This is not the preferred solution as this is a one stop solution for all flows which have authentication. In my particular case, if the user is logging in and they cancel the process, they are redirected to /login. That's fine but what if I have to reauthenticate a session in the background and something else happens? Why can't we just make the errorCallbackUrl work?

@asynchroza commented on GitHub (Jun 6, 2025): After revisiting the PR which is supposedly closing this issue, I figured that the newly developed option only allows `onAPIError` which is a global endpoint for when the API route fails. ```ts import { betterAuth } from 'better-auth'; import { dialect } from '~/database/client'; import { env } from '~/env'; export const auth = betterAuth({ socialProviders: { google: { clientId: env.GOOGLE_CLIENT_ID, clientSecret: env.GOOGLE_CLIENT_SECRET }, facebook: { clientId: env.FACEBOOK_CLIENT_ID, clientSecret: env.FACEBOOK_CLIENT_SECRET } }, database: dialect, onAPIError: { errorURL: "/login" } }); ``` This is not the preferred solution as this is a one stop solution for all flows which have authentication. In my particular case, if the user is logging in and they cancel the process, they are redirected to `/login`. That's fine but what if I have to reauthenticate a session in the background and something else happens? Why can't we just make the `errorCallbackUrl` work?

GiteaMirror commented

2026-04-13 04:03:14 -05:00

@H7ioo commented on GitHub (Jun 24, 2025):

Having the same issues.
When user gets banned and tries to login with OAuth, the user gets redirected to api/auth/error instead of specified redirect page

@H7ioo commented on GitHub (Jun 24, 2025): Having the same issues. When user gets banned and tries to login with OAuth, the user gets redirected to api/auth/error instead of specified redirect page

GiteaMirror commented

2026-04-13 04:03:15 -05:00

@irg1008 commented on GitHub (Jul 2, 2025):

In mi case the onError callback doesn't even get triggered

@irg1008 commented on GitHub (Jul 2, 2025): In mi case the onError callback doesn't even get triggered

GiteaMirror commented

2026-04-13 04:03:15 -05:00

@staguer commented on GitHub (Jul 2, 2025):

I'm also running into this issue.

@staguer commented on GitHub (Jul 2, 2025): I'm also running into this issue.

GiteaMirror commented

2026-04-13 04:03:15 -05:00

@H7ioo commented on GitHub (Jul 2, 2025):

This should be solved in the next version (1.3.0) you can check the releases page.

@H7ioo commented on GitHub (Jul 2, 2025): This should be solved in the next version (1.3.0) you can check the releases page.

GiteaMirror commented

2026-04-13 04:03:16 -05:00

@esoteloferry commented on GitHub (Aug 10, 2025):

Having the same issues. When user gets banned and tries to login with OAuth, the user gets redirected to api/auth/error instead of specified redirect page

I encountered same issue, and using 1.3.4 still does not fix , what workaround did you use?

@esoteloferry commented on GitHub (Aug 10, 2025): > Having the same issues. When user gets banned and tries to login with OAuth, the user gets redirected to api/auth/error instead of specified redirect page I encountered same issue, and using 1.3.4 still does not fix , what workaround did you use?

GiteaMirror commented

2026-04-13 04:03:17 -05:00

@erquhart commented on GitHub (Aug 14, 2025):

Confirmed this url doesn't get called if, for example, you start Google log in and hit cancel instead of approving the connection.

@erquhart commented on GitHub (Aug 14, 2025): Confirmed this url doesn't get called if, for example, you start Google log in and hit cancel instead of approving the connection.

GiteaMirror commented

2026-04-13 04:03:17 -05:00

@JackNeto commented on GitHub (Aug 22, 2025):

Any update on this. Not sure why this issue is closed

@JackNeto commented on GitHub (Aug 22, 2025): Any update on this. Not sure why this issue is closed

GiteaMirror commented

2026-04-13 04:03:18 -05:00

@najibghadri commented on GitHub (Sep 3, 2025):

Needs reopening guys.. @ping-maxwell

@najibghadri commented on GitHub (Sep 3, 2025): Needs reopening guys.. @ping-maxwell

GiteaMirror commented

2026-04-13 04:03:19 -05:00

@v1taly commented on GitHub (Sep 6, 2025):

Need reopening. Still doesn't work.

@v1taly commented on GitHub (Sep 6, 2025): Need reopening. Still doesn't work.

GiteaMirror commented

2026-04-13 04:03:20 -05:00

@buisnessvision2026 commented on GitHub (Sep 11, 2025):

still not working

@buisnessvision2026 commented on GitHub (Sep 11, 2025): still not working

GiteaMirror commented

2026-04-13 04:03:21 -05:00

@redsuperbat commented on GitHub (Sep 12, 2025):

I'm also facing this issue. It seems to work if I manually throw an error in a hook but not if i cancel the oauth flow by denying etc

@redsuperbat commented on GitHub (Sep 12, 2025): I'm also facing this issue. It seems to work if I manually throw an error in a hook but not if i cancel the oauth flow by denying etc

GiteaMirror commented

2026-04-13 04:03:22 -05:00

@erquhart commented on GitHub (Sep 12, 2025):

This issue has a lot less thumbs up reactions than comments, recommend everyone thumb it up

@erquhart commented on GitHub (Sep 12, 2025): This issue has a lot less thumbs up reactions than comments, recommend everyone thumb it up

GiteaMirror commented

2026-04-13 04:03:22 -05:00

@DiegoGonzalezCruz commented on GitHub (Oct 22, 2025):

this is still not working....

@DiegoGonzalezCruz commented on GitHub (Oct 22, 2025): this is still not working....

GiteaMirror commented

2026-04-13 04:03:23 -05:00

@Gustavonobregab commented on GitHub (Dec 1, 2025):

Any updates???? Still not working

@Gustavonobregab commented on GitHub (Dec 1, 2025): Any updates???? Still not working

GiteaMirror referenced this issue

2026-04-13 10:32:22 -05:00

[PR #8827] docs: fix missing secret param in getSignedCookie example #16486

GiteaMirror referenced this issue

2026-04-15 22:44:18 -05:00

[PR #8827] [MERGED] docs: fix missing secret param in getSignedCookie example #25140

Sign in to join this conversation.

Branches Tags

2026-05-22/chore/adopt-agents-md

2026-05-22/refactor/string-case-utils

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/turbo-2.9.14

changeset-release/main

main

2026-05-14/fix/passkey-verify-error-and-claim

dependabot/npm_and_yarn/samlify-2.13.0

dependabot/npm_and_yarn/ws-8.20.1

changeset-release/next

dependabot/npm_and_yarn/demo/electron/demo-minor-patch-519ef7475f

dependabot/github_actions/github-actions-98f3470200

client-assertions-main

2026-05-15/ci/fix-sqlite-abi-mismatch

2026-05-15/fix/organization-team-add-cascade

2026-05-15/fix/parse-set-cookie-value-validation

2026-05-13/feat/captcha-wildcard-endpoints

2026-05-13/ci/stabilize-docker-startup

fix/i18n-before-hook-translation

fix/disable-migration-generate

2026-05-07/fix/admin-set-password-upsert

2026-05-10/fix/cookie-drain-order

2026-05-10/feat/hooks-finally

2026-05-09/fix/cookie-drain-order

2026-05-09/feat/hooks-finally

2026-05-08/feat/register-before-send

fix/stripe/subscription-data-merge

2026-05-01/chore/pnpm-v11-harden

chore/pnpm-v11

2026-04-29/feat/google-include-granted-scopes

2026-04-29/fix/oauth-account-scope-semantics

2026-04-27/fix/nextcookies-idempotent-writes

2026-04-26/fix/harden-proxy-host-validation

2026-04-26/refactor/stripe-callback-signature-cleanup

2026-04-26/fix/stripe-subscription-callback-timing

2026-04-11/fix/sveltekit-app-modules

feat/open-api-zod-contract

feat/oauth-provider-backchannel-logout-next

feat/oauth-idp-initiated-bounce

refactor/sign-in-challenges

2026-04-21/fix/oauth-rfc-input-validation

fix/release-notes-new-packages

fix/two-factor-identity-guard

fix/resource

feat/emailpassword-authorize

2026-04-12/security/dynamic-baseurl-proxy-trust-default

feat/oauth-provider-at-hash-v2

fix/release-grep-fallback

claude/address-review-comments-JhFLr

claude/slack-update-stripe-docs-consistency-8Sc0w

feat/async-auth

fix/two-factor-totp-verified-enrollment

feat/plugin-ui

codex/blog-1-6-release-post

2026-04-06/fix/type-any-guards

2026-04-05/chore/downgrade-better-call

2026-04-04/ci/skip-vercel-fork-prs

2026-03-28/ci/add-autofix-ci

chore/release-preview-script

himself65/2026/02/19/role

2026-03-24/fix/update-user-info-on-link

2026-03-20/docs/improve-website

2026-03-20/fix/anonymous-onlinkaccount-expo

2026-02-17/fix/anonymous-link-state

fix/8607-saml-inresponseto

fix/8549-scim-patch-noop

v1.4.x

refactor/migration-snapshot-tests

worktree-magic-link-additional-data

chore/migrate-build-to-rollup

worktree-fix-dynamic-baseurl-8447

2026-03-06/chore/public-api-check

fix/close-8156-regression-test

fix/secondary-storage-json-error-handling

himself65/verification-namespace

cursor/issue-8307-validation-79a3

himself65/2026/01/30/error-mdx

v1.4.x-staging

fix/email-otp-user

fix/restrict-full-organization-access-roles

himself65/2026/02/12/count

himself65/2026/02/04/define-plugin

2026-02-04/feat/add-pluralize

cursor/better-auth-js-integration-ec21

cursor/expo-state-mismatch-394c

2026-02-01/fix/org-update-role-sync-members

cursor/issue-7607-investigation-e146

cursor/email-generation-helper-0ff6

himself65/2026/01/21/avoid-spread-operator

himself65/2026/01/14/cli

claude/slack-add-docs-pr-NMvgO

claude/slack-add-advanced-useplural-WHKYL

feat/hooks-pos

feat/2fa-phone

feat/2fa

fix/rotation

fix/username-check

v1.3.x

refactor/organization

feat/multiple-client-ids-social-providers

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/better-auth#8827

[GH-ISSUE #1580] errorCallbackURL is not working it is ignored on error #8827

Is this suited for github?

To Reproduce

Current vs. Expected behavior

What version of Better Auth are you using?

Provide environment information

Which area(s) are affected? (Select all that apply)

Auth config (if applicable)

Additional context

[GH-ISSUE #1580] `errorCallbackURL` is not working it is ignored on error #8827