fix: fix domain validator with port but no scheme and https or http

This commit is contained in:
Stavros
2026-07-18 18:17:24 +03:00
parent d6087dc45e
commit 50c25e4478
3 changed files with 33 additions and 11 deletions
@@ -113,14 +113,6 @@ func TestOAuthController_isRedirectSafe(t *testing.T) {
redirectURI: "https:/malicious",
expected: false,
},
{
description: "Redirect URI without scheme returns false",
appURL: "https://tinyauth.example.com",
cookieDomain: "example.com",
subdomainsEnabled: true,
redirectURI: "tinyauth.example.com",
expected: false,
},
{
description: "Relative redirect URI returns false",
appURL: "https://tinyauth.example.com",