Do not redirect on unauthorized OIDC redirection URI (#1142)

2017-01-24 16:19:18 +00:00 · 2017-01-24 16:19:18 +00:00 · 53014dd483
commit 53014dd483
parent a865cea016
1 changed files with 1 additions and 9 deletions
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Issuer/OpenIDConnect.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Issuer/OpenIDConnect.pm
@ -330,15 +330,7 @@ sub run {
                unless ($redirect_uri_allowed) {
                    $self->lmLog( "Redirect URI $redirect_uri not allowed",
                        'error' );
-                    return $self->returnRedirectError(
-                        $req,
-                        $oidc_request->{'redirect_uri'},
-                        "invalid_request",
-                        "redirect_uri $redirect_uri not allowed",
-                        undef,
-                        $oidc_request->{'state'},
-                        ( $flow ne "authorizationcode" )
-                    );
+                    return PE_BADURL;
                }
            }