Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/lib/google_api
diff options
context:
space:
mode:
authorShinya Maeda <shinya@gitlab.com>2017-10-06 15:28:40 +0300
committerShinya Maeda <shinya@gitlab.com>2017-10-06 15:28:40 +0300
commitf293288589f24e1928b57dcd3428b762ae9ced79 (patch)
treed54b6425ac0fe596e27d3cbe291e08f28b10267b /lib/google_api
parent5ced761ebdcb0579377e338c2e321e4ba0373336 (diff)
Security fix: redirection in google_api/authorizations_controller
Diffstat (limited to 'lib/google_api')
-rw-r--r--lib/google_api/cloud_platform/client.rb5
1 files changed, 5 insertions, 0 deletions
diff --git a/lib/google_api/cloud_platform/client.rb b/lib/google_api/cloud_platform/client.rb
index 5ec1fa37546..6d0c148b261 100644
--- a/lib/google_api/cloud_platform/client.rb
+++ b/lib/google_api/cloud_platform/client.rb
@@ -15,6 +15,11 @@ module GoogleApi
def session_key_for_expires_at
:cloud_platform_expires_at
end
+
+ def session_key_for_second_redirect_uri(secure: nil)
+ secure = SecureRandom.hex unless secure
+ return "cloud_platform_second_redirect_uri_#{secure}", secure
+ end
end
def scope
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-13 22:48:43 +0300