Update/oauth3 cvm url

[2xburnt]

This pull request refactors the OAuth3 authentication flow to improve security and simplify session management. The main changes remove token handling from the client and rely solely on the CVM's session cookie (sid) for authentication, streamlining the OAuth3 integration. Additionally, sharing and social features now use the current site origin dynamically instead of hardcoding URLs.

OAuth3 Authentication Flow Refactor:

• Removed client-side handling and storage of OAuth3 tokens; authentication now uses the CVM's sid session cookie set via the /oauth3 reverse proxy. This affects the callback, login, and verify endpoints (src/app/api/oauth3/callback/route.ts, src/app/api/oauth3/login/route.ts, src/app/api/oauth3/verify/route.ts). [1] [2] [3] [4] [5] [6]
• Updated .env.example and .env.production to clarify server-only OAuth3 settings and removed unused client-side OAuth3 base URL variables. [1] [2]

Dynamic Site Origin for Sharing:

• Changed copy-to-clipboard and Twitter share links to use window.location.origin instead of hardcoded URLs throughout the badge and overloaded pages (src/app/badge/[address]/BadgeContent.tsx, src/app/overloaded/page.tsx). (src/app/badge/[address]/BadgeContent.tsxL204-R207, src/app/badge/[address]/BadgeContent.tsxL221-R221, src/app/overloaded/page.tsxL27-R33)

Authentication Redirect Improvements:

• Updated the authentication redirect callback URL in the root layout to consistently use /verify after OAuth3 login.

[github-actions]

🚀 Preview Deployment

Version ID: 43660797-f87a-478d-8423-81c655d0c5d4
Preview URL: https://43660797-redacted.burnt.workers.dev
To deploy: npx wrangler versions deploy 43660797-f87a-478d-8423-81c655d0c5d4 --percentage 100