tsai
/
abp
mirror of https://github.com/abpframework/abp.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Use safe redirect after registration 

Replaces direct Redirect with RedirectSafelyAsync after user registration to enhance security when handling return URLs.
pull/24059/head
enisn 3 months ago
parent
7487878c38
commit
a01adc5846
No known key found for this signature in database GPG Key ID: A052619F04155D1C
1 changed files with 1 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs

2
modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs
View File

@ -137,7 +137,7 @@ public class RegisterModel : AccountPageModel
await RegisterLocalUserAsync();
}
return Redirect(ReturnUrl ?? "~/"); //TODO: How to ensure safety? IdentityServer requires it however it should be checked somehow!
return await RedirectSafelyAsync(ReturnUrl ?? "~/");
}
catch (BusinessException e)
{

Write Preview
Loading…
Cancel
Save