challenger

OAuth 2.0-based authentication service that validates user can receive messages at a certain address
Log | Files | Refs | Submodules | README | LICENSE

commit af1b8347716ad87c912728d3bdeeef7f51f223da
parent ed8c906cda8002f743184c59069b839e86751ca9
Author: Christian Grothoff <grothoff@gnunet.org>
Date:   Thu,  9 Jul 2026 21:33:08 +0200

check redirect URL being well-formed

Diffstat:
Msrc/challenger/challenger-admin.c | 7+++++++
1 file changed, 7 insertions(+), 0 deletions(-)

diff --git a/src/challenger/challenger-admin.c b/src/challenger/challenger-admin.c @@ -88,6 +88,13 @@ run (void *cls, global_ret = EXIT_INVALIDARGUMENT; return; } + if (! TALER_is_web_url (redirect_uri)) + { + fprintf (stderr, + "REDIRECT URI must be valid HTTP(S) URI\n"); + global_ret = EXIT_INVALIDARGUMENT; + return; + } if ( (NULL != client_secret) && (0 != strncasecmp (client_secret, RFC_8959_PREFIX,