fix: fix scope/state removal for implicit flow with hash

Author: kranich

projects/lib/src/oauth-service.ts

@@ -1629,11 +1629,11 @@ export class OAuthService extends AuthConfig implements OnDestroy {
     const sessionState = parts['session_state'];
 
     if (!options.preventClearHashAfterLogin) {
-      const href = location.href
-        .replace(/[&\?]code=[^&\$]*/, '')
+      const href = location.origin + location.pathname +
+        location.search.replace(/[&\?]code=[^&\$]*/, '')
         .replace(/[&\?]scope=[^&\$]*/, '')
         .replace(/[&\?]state=[^&\$]*/, '')
-        .replace(/[&\?]session_state=[^&\$]*/, '');
+        .replace(/[&\?]session_state=[^&\$]*/, '') + location.hash;
 
       history.replaceState(null, window.name, href);
     }