Authorization Request Expiry Error in Banno Plugin Card View with Local React App (Port 3000)

Question

We are trying to render our React app inside a Banno plugin card view. Our app is running locally on port 3000, but we're encountering an authorization error with the following message: { "error": "invalid_request", "error_description": "authorization request has expired", "request_id": "c6e2d69fe72dd655b0ccxxxxxxxxx" } When inspecting the network tab, we notice that the request is not being sent to the redirect URI we've set (http://localhost:3000) with code and state values. Instead, it's going to https://digital.garden-fi.com/login?returnUrl=/a/consumer/api/v0/oidc/auth/ZxyFL2-7UTlOMApbxxxx till this and giving the above error.

Interestingly, when we access the React app directly (without embedding it inside the plugin), the authorization flow works fine. However, when the app is running inside the Banno plugin card view, the redirect URI isn't respected, and we receive the error message.

Has anyone experienced this issue when embedding a local app in the Banno plugin? How can we resolve the redirect URI issue to allow local authorization during the OAuth flow? Any help or pointers would be greatly appreciated!

In our React app, we are using window.location.href = authorizationURL; to redirect the user to the authorization URL. We expected that the app, when running inside the Banno plugin card view, would correctly redirect to the specified redirect_uri (http://localhost:3000). However, when embedded inside the plugin, the request is redirected to https://digital.garden-fi.com/login?returnUrl=/a/consumer/api/v0/oidc/auth/... instead.

We anticipated that window.location.href would properly handle the redirection within the iframe in the Banno plugin, but it doesn't seem to respect the local redirect URI, causing the "authorization request has expired" error. When we run the app directly without the plugin (on port 3000), everything works as expected.