Skip to content
This repository has been archived by the owner on Dec 5, 2023. It is now read-only.

add denylist for redirection to avoid open redirects #173

Merged
merged 1 commit into from
Nov 28, 2023

Conversation

enekofb
Copy link
Contributor

@enekofb enekofb commented Oct 31, 2023

This PR addresses a potential open redirect attack by checking, before redirecting, whether the path to redirect to is valid.

Copy link
Contributor

@morancj morancj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great, thank you!

@morancj morancj merged commit 807c9ca into microservices-demo:master Nov 28, 2023
1 check passed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants