From 37b26d4f220330214e21916fdb21b571a01d889a Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Sat, 24 Jan 2026 20:25:02 +0000
Subject: [PATCH 1/3] Initial plan


From 1fe5d6d4484742fd6a4b49aaf27a210f683016db Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Sat, 24 Jan 2026 20:27:28 +0000
Subject: [PATCH 2/3] Fix redirect loop by checking auth routes before saving
 to session

Co-authored-by: vitoo <995694+vitoo@users.noreply.github.com>
---
 app/Http/Controllers/Auth/LoginController.php | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/app/Http/Controllers/Auth/LoginController.php b/app/Http/Controllers/Auth/LoginController.php
index 1affebe..b7f906b 100755
--- a/app/Http/Controllers/Auth/LoginController.php
+++ b/app/Http/Controllers/Auth/LoginController.php
@@ -52,7 +52,19 @@ private function redirectTo()
 
     public function showLoginForm()
     {
-        session(['redir' => url()->previous()]);
+        $previous = url()->previous();
+        $authRoutes = [
+            route('login'),
+            route('register'),
+            route('password.request'),
+            url('auth/github'),
+        ];
+
+        $isAuthRoute = collect($authRoutes)->contains(fn($route) => str_contains($previous, $route));
+
+        if (!$isAuthRoute) {
+            session(['redir' => $previous]);
+        }
 
         return view('auth.login');
     }

From d0be3ecbd9942c00f778d98ee7a74d766d6f2a56 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Sat, 24 Jan 2026 20:28:33 +0000
Subject: [PATCH 3/3] Use exact URL comparison instead of str_contains to avoid
 false positives

Co-authored-by: vitoo <995694+vitoo@users.noreply.github.com>
---
 app/Http/Controllers/Auth/LoginController.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/app/Http/Controllers/Auth/LoginController.php b/app/Http/Controllers/Auth/LoginController.php
index b7f906b..0f58049 100755
--- a/app/Http/Controllers/Auth/LoginController.php
+++ b/app/Http/Controllers/Auth/LoginController.php
@@ -58,9 +58,10 @@ public function showLoginForm()
             route('register'),
             route('password.request'),
             url('auth/github'),
+            url('auth/github/callback'),
         ];
 
-        $isAuthRoute = collect($authRoutes)->contains(fn($route) => str_contains($previous, $route));
+        $isAuthRoute = in_array($previous, $authRoutes, true);
 
         if (!$isAuthRoute) {
             session(['redir' => $previous]);