barbercollie/tinyauth
1
0
Fork 1
mirror of https://github.com/steveiliop56/tinyauth.git synced 2026-06-22 19:30:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: use case insensitive check in the oauth controller

Browse Source
This commit is contained in:
Stavros
2026-06-21 16:53:31 +03:00
parent 21877190e4
commit d87be8676c
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
internal/controller/oauth_controller.go
+2 -2
View File
@@ -335,7 +335,7 @@ func (controller *OAuthController) isRedirectSafe(redirectURI string) bool {
return false
}
if u.Host == au.Host {
if strings.EqualFold(u.Host, au.Host) {
return true
}
@@ -343,7 +343,7 @@ func (controller *OAuthController) isRedirectSafe(redirectURI string) bool {
return false
}
if strings.HasSuffix(u.Host, "."+au.Host) {
if strings.HasSuffix(strings.ToLower(u.Host), "."+strings.ToLower(controller.runtime.CookieDomain)) {
return true
}