Reviewed: https://reviews.mahara.org/618 Committed: http://gitorious.org/mahara/mahara/commit/a96a3e361a314f49bfd6bce723fc2611aa20df7a Submitter: Hugh Davenport ([email protected]) Branch: master
commit a96a3e361a314f49bfd6bce723fc2611aa20df7a Author: Piers Harding <[email protected]> Date: Mon Aug 29 12:38:15 2011 +1200 auth/saml sanitise user redirection (bug #836358) Ensure that the target 'wantsurl' for redirection is not back to itself, and is also within the current site. Change-Id: Ieb729e47b4cad3e52985e72065e6f8e8c8f338f7 Signed-off-by: Piers Harding <[email protected]> -- You received this bug notification because you are a member of Mahara Core, which is subscribed to Mahara. https://bugs.launchpad.net/bugs/836358 Title: auth/saml does not always do sensible redirection after login Status in Mahara ePortfolio: In Progress Bug description: auth/saml does not check correctly that the 'wantsurl' value set for the redirection is sane, and does not cause redirection loops, or send the user outside of the site. To manage notifications about this bug go to: https://bugs.launchpad.net/mahara/+bug/836358/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~mahara-core Post to : [email protected] Unsubscribe : https://launchpad.net/~mahara-core More help : https://help.launchpad.net/ListHelp
