TheDude
/
openproject
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix protocol-relative redirection test

Browse Source 
- escape forward slash in regexp
- allow redirection to home_path '/'
pull/1541/head
Philipp Tessenow 11 years ago committed by Christian Ratz
parent 1db8642ac6
commit 0cdbaf39f6
1 changed files with 1 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      app/controllers/application_controller.rb

2
app/controllers/application_controller.rb
Unescape View File

@ -428,7 +428,7 @@ class ApplicationController < ActionController::Base
begin
uri = URI.parse(back_url)
# do not redirect user to another host or to the login or register page
if ((uri.relative? && back_url.match(%r{\A/\w})) || (uri.host == request.host)) && !uri.path.match(%r{/(login|account/register)})
if ((uri.relative? && !back_url.match(%r{\A\/\/})) || (uri.host == request.host)) && !uri.path.match(%r{/(login|account/register)})
redirect_to(back_url)
return
end

Write Preview
Loading…
Cancel
Save