IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity

Auth: Fix token rotation redirect when session storage redirect is enabled (#93906)

Browse Source 
Fix token rotation redirect when session storage redirect is enabled
This commit is contained in:
Misi 2024-09-27 14:57:46 +02:00 committed by GitHub
parent 598179227c
commit 7e94d05d39
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
pkg/api/user_token.go
View File

@ -88,7 +88,11 @@ func (hs *HTTPServer) RotateUserAuthTokenRedirect(c *contextmodel.ReqContext) re
return response.Redirect(hs.GetRedirectURL(c))
}
redirectTo := c.Query("redirectTo")
if err := hs.ValidateRedirectTo(redirectTo); err != nil {
return response.Redirect(hs.Cfg.AppSubURL + "/")
}
return response.Redirect(hs.Cfg.AppSubURL + redirectTo)
}
// swagger:route POST /user/auth-tokens/rotate
@ -133,7 +137,6 @@ func (hs *HTTPServer) rotateToken(c *contextmodel.ReqContext) error {
IP: ip,
UserAgent: c.Req.UserAgent(),
})
if err != nil {
return err
}