Alright. We’ve successfully fixed ours. I don’t know if this is totally related with the others issues. We’ve recently changed from http to https (SSL stuff) and it was when this first happened to us. We’ve checked our code now throughly and we found out in our callback we’re doing this
redirect_to request.env[‘HTTP_REFERER’] || env[‘omniauth.origin’] || root_url (ruby and using omniauth-twitter https://github.com/arunagw/omniauth-twitter)
We removed request.env[‘HTTP_REFERER’] and it worked perfectly now. I think it is right that we really shouldn’t have had HTTP_REFERER there but it is weird that when on http-version HTTP_REFERER doesn’t have a value and when on https-version it does have a value. Also, on https-version some of us can log in and some really can’t. So I think that HTTP_REFERER sometimes has a value and sometimes don’t. Different behaviors, which is a bit weird.
Would you happen to know why @episod?
I don’t know if this’ll help anyone but it’s still worth checking.