Bug 31699: (follow-up) Protect more against open redirects
This change checks that the OPACBaseURL exists, and uses its scheme
and authority to rewrite the URL passed through the "return"
param.
Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
(cherry picked from commit 37ced7df05)
Signed-off-by: Jacob O'Mara <jacob.omara@ptfs-europe.com>
This commit is contained in:
parent
5a6a7f0467
commit
cf694ee7e5
1 changed files with 14 additions and 6 deletions
|
|
@ -20,6 +20,7 @@
|
|||
use Modern::Perl;
|
||||
|
||||
use CGI qw ( -utf8 );
|
||||
use URI;
|
||||
|
||||
use C4::Auth qw( get_template_and_user );
|
||||
use C4::Koha qw(
|
||||
|
|
@ -428,12 +429,19 @@ if ($search_query) {
|
|||
# back to the page we triggered the login from
|
||||
my $return = $query->param('return');
|
||||
if ( $return ) {
|
||||
my $uri = C4::Context->preference('OPACBaseURL');
|
||||
$uri .= $return;
|
||||
print $query->redirect(
|
||||
-uri => $uri,
|
||||
-cookie => $cookie,
|
||||
);
|
||||
my $uri_syspref = C4::Context->preference('OPACBaseURL');
|
||||
if ( $uri_syspref ){
|
||||
my $uri = URI->new($uri_syspref);
|
||||
if ( $uri->isa('URI::http') && $uri->host() ){
|
||||
my $return_uri = URI->new($return);
|
||||
$return_uri->scheme( $uri->scheme() );
|
||||
$return_uri->authority( $uri->authority() );
|
||||
print $query->redirect(
|
||||
-uri => "$return_uri",
|
||||
-cookie => $cookie,
|
||||
);
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
output_html_with_http_headers $query, $cookie, $template->output, undef, { force_no_caching => 1 };
|
||||
|
|
|
|||
Loading…
Reference in a new issue