Issue #3439345: Test for redirection after login (!31) · Merge requests · project / simplesamlphp_auth · GitLab

Mingsong requested to merge issue/simplesamlphp_auth-3439345:3439345-test-for-redirection into 4.x Apr 08, 2024

Closes #3439345

This merge request includes the following changes:

Fix a bug that makes previous test failed.
Add a new member function called 'isTrustedUrl()' to check whether an URL is trusted.
Use the new function to check the redirect URL before putting it into the cookie and redirecting.
A new PHPUnit test to make sure the redirection is safe.

Edited Apr 08, 2024 by Mingsong