From e888bcf07b11a0813d1865546be55b5b9fdf32de Mon Sep 17 00:00:00 2001
From: Ted Ian Osias <osiastedian@gmail.com>
Date: Wed, 23 Jul 2025 10:44:52 +0800
Subject: [PATCH] Update OAuth2 URL to X

This should solve security issue when logging in with their X account.

Issue:
Even when user is logged out from Twitter when Oauth 2  Authorization URL is  used the session still retains and work.
In effect, it bypasses the security of being logged out.

Signed-off-by: Ted Ian Osias <osiastedian@gmail.com>
---
 src/OAuth2User.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/OAuth2User.ts b/src/OAuth2User.ts
index 64d2eb6..a1df73f 100644
--- a/src/OAuth2User.ts
+++ b/src/OAuth2User.ts
@@ -255,7 +255,7 @@ export class OAuth2User implements AuthClient {
       this.#code_verifier = options.code_challenge;
     }
     const code_challenge = this.#code_challenge;
-    const url = new URL("https://twitter.com/i/oauth2/authorize");
+    const url = new URL("https://x.com/i/oauth2/authorize");
     url.search = buildQueryString({
       ...options,
       client_id,