Skip to content
This repository was archived by the owner on Jan 24, 2021. It is now read-only.
This repository was archived by the owner on Jan 24, 2021. It is now read-only.

Open redirect in UserLoggedInRedirectResponse #893

Closed
Closed
Open redirect in UserLoggedInRedirectResponse#893
Labels
Breaking ChangeBug
Milestone
0.15.1
@logicbomb

Description

@logicbomb
logicbomb
opened on Jan 7, 2013

https://github.com/NancyFx/Nancy/blob/master/src/Nancy.Authentication.Forms/FormsAuthentication.cs#L81

The method will redirect to a URL even if it isn't local in Nancy.Authentication.Forms.FormsAuthentication.UserLoggedInRedirectResponse

Metadata

Metadata

Assignees

No one assigned

    Labels

    Breaking ChangeBug

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions