Skip to content

Commit

Permalink
fixed open redirect issue on signin page
Browse files Browse the repository at this point in the history
  • Loading branch information
@albogdano
albogdano committed Aug 1, 2021
1 parent 604d03e commit 677ab76
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 2 deletions.
4 changes: 2 additions & 2 deletions src/main/java/com/erudika/scoold/controllers/SigninController.java
View file
Expand Up @@ -60,10 +60,10 @@ public SigninController(ScooldUtils utils) {
public String get(@RequestParam(name = "returnto", required = false, defaultValue = HOMEPAGE) String returnto,
HttpServletRequest req, HttpServletResponse res, Model model) {
if (utils.isAuthenticated(req)) {
return "redirect:" + (StringUtils.startsWithIgnoreCase(returnto, SIGNINLINK) ? HOMEPAGE : returnto);
return "redirect:" + (StringUtils.startsWithIgnoreCase(returnto, SIGNINLINK) ? HOMEPAGE : getBackToUrl(req));
}
if (!HOMEPAGE.equals(returnto) && !SIGNINLINK.equals(returnto)) {
HttpUtils.setStateParam("returnto", Utils.urlEncode(returnto), req, res);
HttpUtils.setStateParam("returnto", Utils.urlEncode(getBackToUrl(req)), req, res);
} else {
HttpUtils.removeStateParam("returnto", req, res);
}
Expand Down
8 changes: 8 additions & 0 deletions src/main/java/com/erudika/scoold/utils/HttpUtils.java
View file
Expand Up @@ -306,6 +306,14 @@ public static void setAuthCookie(String jwt, HttpServletRequest req, HttpServlet
*/
public static String getBackToUrl(HttpServletRequest req) {
String backtoFromCookie = Utils.urlDecode(HttpUtils.getStateParam("returnto", req));
if (StringUtils.isBlank(backtoFromCookie)) {
backtoFromCookie = req.getParameter("returnto");
}
if ((StringUtils.startsWithIgnoreCase(backtoFromCookie, "http://") ||
StringUtils.startsWithIgnoreCase(backtoFromCookie, "https://")) &&
!StringUtils.startsWithIgnoreCase(backtoFromCookie, ScooldServer.getServerURL())) {
backtoFromCookie = "";
}
return (StringUtils.isBlank(backtoFromCookie) ? HOMEPAGE : backtoFromCookie);
}
}

0 comments on commit 677ab76

Please sign in to comment.