Vercel MCP OAuth fails: “App configuration error – redirect URL is invalid”

ghwls1121 · April 25, 2026, 7:27am

Where does the bug appear (feature/product)?

BugBot

Describe the Bug

I can’t connect Vercel MCP in Cursor because OAuth keeps failing with “The app redirect URL is invalid”.
Authorize URL sample:

Steps to Reproduce

Add Vercel MCP via “Add to Cursor”
In Cursor, click “Needs login”
Browser opens Vercel OAuth authorize page
Error appears: “The app redirect URL is invalid”

Expected Behavior

OAuth should complete and return to Cursor via cursor:// callback, then Vercel MCP should connect.

Operating System

Windows 10/11

Version Information

OS: Windows 10 (10.0.19045)
Cursor version: 3.2.11
Browser: Chrome

For AI issues: add Request ID with privacy disabled

Composer request ID: [paste here]
Apply request ID: [paste here, or remove if none]

Additional Information

Could you check whether Cursor’s Vercel OAuth client redirect URI is correctly configured?

Does this stop you from using Cursor

No - Cursor works, but with this issue

deanrie · April 25, 2026, 8:14am

Hey, thanks for the detailed report. This isn’t a Cursor-side bug. Cursor returns the cursor://anysphere.cursor-mcp/oauth/callback redirect correctly, and OAuth works fine for other MCP providers that have this URI registered.

The “The app redirect URL is invalid” error is coming from Vercel’s authorize endpoint before the callback ever returns to Cursor. This means Vercel hasn’t whitelisted cursor://anysphere.cursor-mcp/oauth/callback as a valid redirect URI in their OAuth client config for the MCP integration client_id=cl_KcWL599JrCOhI4n2lXPJJ8rkF4SqSbOf. Redirect URI registration is done on the provider side, so we can’t fix this unilaterally.

We saw the exact same issue recently with Linear MCP Linear MCP auth fails with “Invalid redirect URI” (cursor://anysphere.cursor-mcp/oauth/callback) and earlier with Slack. Both were fixed once the provider registered the URI.

I’ve reported this on our side. It also helps to ping Vercel support with the same request. The more signals they get, the faster they’ll pick it up. I can’t share an ETA since the fix depends on them. If there’s an update, I’ll post it in the thread.

Topic		Replies	Views
Linear MCP auth fails with “Invalid redirect URI” (cursor://anysphere.cursor-mcp/oauth/callback) Bug Reports mcp , linear , deeplinks , plugins , linear-linked	3	45	April 24, 2026
Slack MCP: CLI login fails — redirect_uri mismatch (localhost:8787) Bug Reports mcp , login , cli	3	62	April 24, 2026
OAuth 2 redirect URL cursor:// not supported with vendor Help mcp , deeplinks	5	198	March 22, 2026
Cursor using wrong url for token exchange when authorizing an MCP server Bug Reports mcp	2	36	April 20, 2026
MCP OAuth callback loses authorization server URL discovered from resource_metadata, causing token exchange failure Bug Reports mcp	2	745	March 3, 2026