mirror/Part-DB.Part-DB-server
1
0
Fork 1
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2025-06-21 01:25:55 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Automatically whitelist the SAML IIDP domain for external redirect

Browse source 
This fixes issue #318
This commit is contained in:
Jan Böhmer 2023-07-11 21:50:55 +02:00
parent 4fc9c19893
commit a8f96e06bd
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
config/packages/nelmio_security.yaml
View file

@ -12,6 +12,9 @@ nelmio_security:
external_redirects: external_redirects:
abort: true abort: true
log: true log: true
allow_list:
# Whitelist the domain of the SAML IDP, so we can redirect to it during the SAML login process
- '%env(string:key:host:url:SAML_IDP_SINGLE_SIGN_ON_SERVICE)%'
# forces Microsoft's XSS-Protection with # forces Microsoft's XSS-Protection with
# its block mode # its block mode