security-and-privacy/ldapcherry
security-and-privacy
/
ldapcherry
mirror of https://github.com/kakwa/ldapcherry
1
0
Fork 0
Code Releases Activity
686 Commits 3 Branches 22 Tags 1.6 MiB
Commit Graph

5 Commits

Author SHA1 Message Date
John Thiltges 6f98076281 Protect against XSS vulnerabilities in URL redirection 
- Switch from base64 to URL encoding for the passing the URL, using the built-in Mako filtering
- Apply HTML filtering to Mako output by default
- Disable HTML filtering for nested templates in adduser, modify, and selfmodify
 2019-01-02 14:31:10 -06:00
kakwa 1f0cc50d58 adding a redirected to the originaly requested page on login 
user not authenticated and requesting an url are redirected to
the signin page with the requested page url as the query string (in
base64). It permits to redirect them to the requested page once they
've log in.
 2015-07-06 07:58:27 +02:00
kakwa d9031f0994 fix missing </span> in login form 2015-07-05 16:32:18 +02:00
kakwa 147cad3511 fix unicode 2015-06-27 22:35:34 +02:00
kakwa d6bb5c38ed begin implementation of the main application 2015-05-18 19:56:44 +02:00