Skip to content

core: fix non-exploitable open redirect (cherry-pick #13696)#13698

Merged
BeryJu merged 1 commit intoversion-2025.2from
cherry-pick-d5e3e1-version-2025.2
Mar 28, 2025
Merged

core: fix non-exploitable open redirect (cherry-pick #13696)#13698
BeryJu merged 1 commit intoversion-2025.2from
cherry-pick-d5e3e1-version-2025.2

Conversation

@gcp-cherry-pick-bot
Copy link
Contributor

@gcp-cherry-pick-bot gcp-cherry-pick-bot bot commented Mar 28, 2025

Cherry-picked core: fix non-exploitable open redirect (#13696)

discovered by @dominic-r

Signed-off-by: Jens Langhammer jens@goauthentik.io

@BeryJu
core: fix non-exploitable open redirect (#13696)
e33decc 
discovered by @dominic-r

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
@gcp-cherry-pick-bot gcp-cherry-pick-bot bot requested a review from a team as a code owner March 28, 2025 13:15
@netlify
Copy link

netlify bot commented Mar 28, 2025
edited
Loading

Deploy Preview for authentik-docs ready!

Name Link
🔨 Latest commit e33decc
🔍 Latest deploy log https://app.netlify.com/sites/authentik-docs/deploys/67e6a106278a910008cf7e8b
😎 Deploy Preview https://deploy-preview-13698--authentik-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@codecov
Copy link

codecov bot commented Mar 28, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 78.85%. Comparing base (92a1f7e) to head (e33decc).

✅ All tests successful. No failed tests found.

❗ There is a different number of reports uploaded between BASE (92a1f7e) and HEAD (e33decc). Click for more details.

HEAD has 7 uploads less than BASE
Flag BASE (92a1f7e) HEAD (e33decc)
unit 10 5
e2e 8 6
Additional details and impacted files 
@@                 Coverage Diff                 @@
##           version-2025.2   #13698       +/-   ##
===================================================
- Coverage           92.72%   78.85%   -13.87%     
===================================================
  Files                 793      793               
  Lines               40334    40340        +6     
===================================================
- Hits                37399    31812     -5587     
- Misses               2935     8528     +5593
Flag Coverage Δ
e2e 47.35% <100.00%> (-0.69%) ⬇️
integration 24.30% <16.66%> (-0.01%) ⬇️
unit 74.69% <66.66%> (-15.76%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@BeryJu BeryJu merged commit 0c9fd5f into version-2025.2 Mar 28, 2025
79 of 85 checks passed
@BeryJu BeryJu deleted the cherry-pick-d5e3e1-version-2025.2 branch March 28, 2025 13:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@melizeche melizeche melizeche approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@melizeche @BeryJu