summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authortkellner <tkellner@8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4>2011-12-16 10:16:38 +0000
committertkellner <tkellner@8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4>2011-12-16 10:16:38 +0000
commite58dd59c824e39c346763e7bc2a1d58a88cebaa4 (patch)
tree1efe200d073abd2482565b6cc317fb65ce9c9d8e
parentccb12f4df19ac59714f1495b4c8348b6ca4bd7b6 (diff)
downloadmocca-e58dd59c824e39c346763e7bc2a1d58a88cebaa4.tar.gz
mocca-e58dd59c824e39c346763e7bc2a1d58a88cebaa4.tar.bz2
mocca-e58dd59c824e39c346763e7bc2a1d58a88cebaa4.zip
ignore whitespace redirectURLs
git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@1001 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4
Diffstat
-rw-r--r--bkucommon/src/main/java/at/gv/egiz/bku/binding/HTTPBindingProcessorImpl.java2
1 files changed, 1 insertions, 1 deletions
diff --git a/bkucommon/src/main/java/at/gv/egiz/bku/binding/HTTPBindingProcessorImpl.java b/bkucommon/src/main/java/at/gv/egiz/bku/binding/HTTPBindingProcessorImpl.java
index 18e38752..45e966d9 100644
--- a/bkucommon/src/main/java/at/gv/egiz/bku/binding/HTTPBindingProcessorImpl.java
+++ b/bkucommon/src/main/java/at/gv/egiz/bku/binding/HTTPBindingProcessorImpl.java
@@ -610,7 +610,7 @@ public class HTTPBindingProcessorImpl extends AbstractBindingProcessor implement
public String getRedirectURL() {
String redirectURL = getFormParameterAsString(FixedFormParameters.REDIRECTURL);
log.debug("Evaluating redirectURL: " + redirectURL);
- if (redirectURL == null || redirectURL.isEmpty() || redirectURL.contains("\r") || redirectURL.contains("\n") ||
+ if (redirectURL == null || redirectURL.trim().isEmpty() || redirectURL.contains("\r") || redirectURL.contains("\n") ||
redirectURL.contains("<") || redirectURL.toLowerCase().contains("javascript:"))
return null;
return redirectURL;
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-26 18:15:15 +0000