github/lidarr
1
0
Fork 0
mirror of https://github.com/lidarr/lidarr.git synced 2025-07-05 20:42:19 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Fixed: Limit redirects after login to local paths

Browse source 
(cherry picked from commit 14005d8d1054eafaba808337a109d5812f3e79e6)
This commit is contained in:
Mark McDowall 2024-08-20 14:46:36 -07:00 committed by Bogdan
parent 963ffbea4e
commit 5fed16c38a
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
src/Lidarr.Http/Authentication/AuthenticationController.cs
View file

@ -47,7 +47,7 @@ namespace Lidarr.Http.Authentication
await HttpContext.SignInAsync(AuthenticationType.Forms.ToString(), new ClaimsPrincipal(new ClaimsIdentity(claims, "Cookies", "user", "identifier")), authProperties); await HttpContext.SignInAsync(AuthenticationType.Forms.ToString(), new ClaimsPrincipal(new ClaimsIdentity(claims, "Cookies", "user", "identifier")), authProperties);
if (returnUrl.IsNullOrWhiteSpace()) if (returnUrl.IsNullOrWhiteSpace() || !Url.IsLocalUrl(returnUrl))
{ {
return Redirect(_configFileProvider.UrlBase + "/"); return Redirect(_configFileProvider.UrlBase + "/");
} }