Merge pull request #1 from vasanth3008/vasanth3008-saml

Use RelayState for login redirect fallback
pull/7931/head
VASANTH K 1 week ago committed by GitHub
commit 7ce06dceba
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194

@ -72,7 +72,7 @@ router.all('/login/:strategy/callback', async (req, res, next) => {
}, { req, res })
res.cookie('jwt', authResult.jwt, commonHelper.getCookieOpts())
const loginRedirect = req.cookies['loginRedirect']
const loginRedirect = req.cookies['loginRedirect'] ?? decodeURI(req.body.RelayState)
const isValidRedirect = loginRedirect && loginRedirect.startsWith('/') && !loginRedirect.startsWith('//') && !loginRedirect.includes('://')
if (loginRedirect === '/' && authResult.redirect) {
res.clearCookie('loginRedirect')

Loading…
Cancel
Save