Commit 53014dd4 authored by Clément OUDOT's avatar Clément OUDOT

Do not redirect on unauthorized OIDC redirection URI (#1142)

parent a865cea0
......@@ -330,15 +330,7 @@ sub run {
unless ($redirect_uri_allowed) {
$self->lmLog( "Redirect URI $redirect_uri not allowed",
'error' );
return $self->returnRedirectError(
$req,
$oidc_request->{'redirect_uri'},
"invalid_request",
"redirect_uri $redirect_uri not allowed",
undef,
$oidc_request->{'state'},
( $flow ne "authorizationcode" )
);
return PE_BADURL;
}
}
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment