OAuth with Portless OAuth providers validate redirect URIs against domain rules. subdomains fail on most providers because they are not in the Public Suffix List or are explicitly blocked. Portless fixes this with to serve apps on real, valid domains. The Problem When portless uses the default TLD, OAuth providers reject redirect URIs like : | Provider | | subdomains | Reason | | --------- | ----------- | ----------------------- | ------------------------------ | | Google | Allowed | Rejected | Not in their bundled PSL | | Apple | Rejected | Rejected | No localhost at all | | Microsoft | Allo…