Branch: refs/heads/master
Home:
https://github.com/tribe29/checkmk
Commit: 4a8330fe13daf335874c15c7182cdaf79d2f95e4
https://github.com/tribe29/checkmk/commit/4a8330fe13daf335874c15c7182cdaf79…
Author: Lisa Pichler <lisa.pichler(a)tribe29.com>
Date: 2022-12-19 (Mon, 19 Dec 2022)
Changed paths:
M cmk/gui/userdb/saml2/pages.py
Log Message:
-----------
SAML ACS Page: validate RelayState
RelayState is the URL a user originally requested while logged out.
RelayState is passed to the IdP and back, and the IdP is not supposed to
alter it. However, we have decided we still want to validate it, since
it's a security improvement at no additional cost.
CMK-11890
Change-Id: I98674f447b7e29b1fb37f3fc883c08f755711e40