POST to login plugin in login form (#14081)

* Instead of using referrer URL, use redirect post param so we can post to Login module. * Use actual login plugin name. * Remove sanitization for form_redirect POST value. * Couple more checks for a safer redirect. * Do not include port in host check. * Make sure hosts are not empty for more security.
author: diosmosis <diosmosis@users.noreply.github.com> 2019-02-12 02:56:31 +0300
committer: GitHub <noreply@github.com> 2019-02-12 02:56:31 +0300
commit: 92fa86c7b252e2469227b7d1e7f553f297c66898 (patch)
tree: c1111910d378847dec8f42eaf11ee40e70dc8efd /plugins/Login/javascripts
parent: 8e9942ff0729bea84fe52a83db076410500bba14 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/plugins/Login/javascripts/login.js b/plugins/Login/javascripts/login.js
index 981f02b643..a2d5c2f482 100644
--- a/plugins/Login/javascripts/login.js
+++ b/plugins/Login/javascripts/login.js
@@ -39,6 +39,9 @@
             });
         };
 
+        // set login form redirect url
+        $('#login_form_redirect').val(window.location.href);
+
         // 'lost your password?' on click
         $('#login_form_nav').click(function (e) {
             e.preventDefault();
author	diosmosis <diosmosis@users.noreply.github.com>	2019-02-12 02:56:31 +0300
committer	GitHub <noreply@github.com>	2019-02-12 02:56:31 +0300
commit	92fa86c7b252e2469227b7d1e7f553f297c66898 (patch)
tree	c1111910d378847dec8f42eaf11ee40e70dc8efd /plugins/Login/javascripts
parent	8e9942ff0729bea84fe52a83db076410500bba14 (diff)