msb-public
/
wiki
mirror of https://github.com/requarks/wiki
1
0
Code Issues Projects Releases Wiki Activity

Use RelayState for login redirect fallback

Browse Source 
fix(saml): correctly handle RelayState for post-auth redirect

RelayState is a standard SAML parameter used to preserve the target URL
during SSO flow. Updated implementation to properly read and forward
RelayState so users are redirected to the intended resource after
successful authentication.
pull/7931/head^2
VASANTH K 1 week ago committed by GitHub
parent d14b0a5509
commit 1455324ac2
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
server/controllers/auth.js
Unescape View File

@ -72,7 +72,7 @@ router.all('/login/:strategy/callback', async (req, res, next) => {
}, { req, res })
res.cookie('jwt', authResult.jwt, commonHelper.getCookieOpts())
const loginRedirect = req.cookies['loginRedirect']
const loginRedirect = req.cookies['loginRedirect'] ?? decodeURI(req.body.RelayState)
const isValidRedirect = loginRedirect && loginRedirect.startsWith('/') && !loginRedirect.startsWith('//') && !loginRedirect.includes('://')
if (loginRedirect === '/' && authResult.redirect) {
res.clearCookie('loginRedirect')

Write Preview
Loading…
Cancel
Save