techies/authelia
1
0
Fork 0
mirror of https://github.com/0rangebananaspy/authelia.git synced 2024-09-14 22:47:21 +07:00
Code Issues Projects Releases Wiki Activity
08544858de
authelia/test/minimal-config
History
Clement Michaud 42581dfe93 Fix open redirection vulnerability. 
In order to redirect the user after authentication, Authelia uses
rd query parameter provided by the proxy. However an attacker could
use phishing to make the user be redirected to a bad domain. In order
to avoid the user to be redirected to a bad location, Authelia now
verifies the redirection URL is under the protected domain.
2018-11-17 17:48:20 +01:00
..
00-suite.ts Fix U2F sign request after u2f library upgrade. 2018-11-17 13:58:48 +01:00
bad_password.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00
fail_totp.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00
register_totp.ts Use mailcatcher for minimal config setup. 2018-11-15 22:28:29 +01:00
reset_password.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00
validate_totp.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00