diff --git a/web/server/codechecker_server/api/authentication.py b/web/server/codechecker_server/api/authentication.py
index 9cbdc82013..b81a6751a2 100644
--- a/web/server/codechecker_server/api/authentication.py
+++ b/web/server/codechecker_server/api/authentication.py
@@ -226,7 +226,8 @@ def performLogin(self, auth_method, auth_string):
                 client_secret,
                 scope=scope,
                 redirect_uri=redirect_uri)
-
+            #FIXME: This is a workaround for the Microsoft OAuth2 provider
+            # which doesn't correctly fetch the code from url.
             code = url.split("code=")[1].split("&")[0]
             url = url.split("?")[0] + "?code=" + code
             token = session.fetch_token(