3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-04-30 10:56:28 +02:00
Code Issues Projects Releases Packages Wiki Activity

Force redirect scheme to https (#1075)

Browse source
This commit is contained in:
Travis Groth 2020-07-14 23:11:22 -04:00 committed by GitHub
parent 2f84dd2aff
commit 8ebf06dd71
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
authorize/check_response.go
View file

@ -132,7 +132,12 @@ func (a *Authorize) redirectResponse(in *envoy_service_auth_v2.CheckRequest) *en
signinURL := opts.GetAuthenticateURL().ResolveReference(&url.URL{Path: "/.pomerium/sign_in"})
q := signinURL.Query()
q.Set(urlutil.QueryRedirectURI, getCheckRequestURL(in).String())
// always assume https scheme
url := getCheckRequestURL(in)
url.Scheme = "https"
q.Set(urlutil.QueryRedirectURI, url.String())
signinURL.RawQuery = q.Encode()
redirectTo := urlutil.NewSignedURL(opts.SharedKey, signinURL).String()