phundrak/timmal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: implement validateRedirect utility for open redirect protection

Browse Source
This commit is contained in:
Lucien Cartier-Tilet
2025-12-12 13:57:44 +01:00
parent 8867dff780
commit 64d9df5469
3 changed files with 25 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
app/pages/login.vue
View File

@@ -24,14 +24,14 @@ definePageMeta({
});
const route = useRoute();
const redirectPath = (route.query.redirect as string) || '/dashboard';
const redirectPath = validateRedirect(route.query.redirect, '/dashboard');
const { authProviders, error, isAuthenticated } = useAuth();
const providers = await authProviders();
watch(isAuthenticated, (authenticated) => {
const redirect = (authenticated: boolean) => {
if (authenticated) {
navigateTo(redirectPath);
}
});
};
redirect(isAuthenticated.value);
watch(isAuthenticated, redirect);
</script>