[
https://issues.apache.org/jira/browse/KNOX-3132?focusedWorklogId=967242&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-967242
]
ASF GitHub Bot logged work on KNOX-3132:
----------------------------------------
Author: ASF GitHub Bot
Created on: 23/Apr/25 13:15
Start Date: 23/Apr/25 13:15
Worklog Time Spent: 10m
Work Description: bonampak opened a new pull request, #1027:
URL: https://github.com/apache/knox/pull/1027
## What changes were proposed in this pull request?
Adding basic url check and for originalUrl for logout and redirecting jsp.
Also encoding urls for javascript and html output.
## How was this patch tested?
Tested using a dev cluster. simple login and sso, global logout was also
tested with CAS PAC4J demo app.
Issue Time Tracking
-------------------
Worklog Id: (was: 967242)
Remaining Estimate: 0h
Time Spent: 10m
> Improve URL checks for originalUrl
> ----------------------------------
>
> Key: KNOX-3132
> URL: https://issues.apache.org/jira/browse/KNOX-3132
> Project: Apache Knox
> Issue Type: Task
> Components: Homepage
> Affects Versions: 2.2.0
> Reporter: Tamás Marcinkovics
> Assignee: Tamás Marcinkovics
> Priority: Minor
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Apart from the whitelist regex, we need to check originalUrl for logout and
> redirects.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
