aecdbc38cf
getOidcCallbackUrl() was building the redirect_uri from window.location.href, which may contain ephemeral params such as `updated` (appended on auto-update of element-web). This caused a redirect_uri mismatch on authorization servers.