szakatsa/Automatic-Parking
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Uses local redirect for authorization.
All checks were successful
Build, Push and Run Container / build (push) Successful in 25s
Details

Browse Source 
Changes from `RedirectToRoute` to `LocalRedirect` for the
authorization endpoint to improve security and ensure the
redirect stays within the application's domain.
This commit is contained in:
Szakáts Alpár
2025-08-17 12:11:27 +02:00
parent f049d023c9
commit 04a708216a
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Source/ProofOfConcept/Program.cs
View File

@@ -238,7 +238,7 @@ if (app.Environment.IsDevelopment())
logger.LogCritical("User has access_token: {access_token} and refresh_token: {refresh_token}", access_token, refresh_token); logger.LogCritical("User has access_token: {access_token} and refresh_token: {refresh_token}", access_token, refresh_token);
if (String.IsNullOrEmpty(access_token)) if (String.IsNullOrEmpty(access_token))
return Results.RedirectToRoute("/Authorize"); return Results.LocalRedirect("/Authorize");
HttpClient client = httpClientFactory.CreateClient(); HttpClient client = httpClientFactory.CreateClient();
client.BaseAddress = new Uri("tesla_command_proxy"); client.BaseAddress = new Uri("tesla_command_proxy");