mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2025-12-20 14:00:09 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
3a35cf28f84b5342ad3de1efeea4e63202831224
keycloak/docs/documentation/upgrading
History
Ricardo Martin 15a21bf8e4 CVE-2023-6291 keycloak: redirect_uri validation logic that allows for a bypass of otherwise explicitly allowed hosts (#57) 
* Remove lowercase for the hostname as recommended/advised by OAuth spec
Closes https://github.com/keycloak/keycloak/issues/25001

Signed-off-by: rmartinc <rmartinc@redhat.com>

* Strip off user-info from redirect URI when validating using wildcard
Closes https://issues.redhat.com/browse/RHBK-679

Signed-off-by: rmartinc <rmartinc@redhat.com>

---------

Signed-off-by: rmartinc <rmartinc@redhat.com>
2023-12-06 13:51:02 +01:00
..
images
Moving docs to new folder
2023-03-20 09:07:58 +01:00
topics
CVE-2023-6291 keycloak: redirect_uri validation logic that allows for a bypass of otherwise explicitly allowed hosts (#57)
2023-12-06 13:51:02 +01:00
.asciidoctorconfig
Moving docs to new folder
2023-03-20 09:07:58 +01:00
docinfo-footer.html
Moving docs to new folder
2023-03-20 09:07:58 +01:00
docinfo.html
Moving docs to new folder
2023-03-20 09:07:58 +01:00
index.adoc
Moving docs to new folder
2023-03-20 09:07:58 +01:00
pom.xml
Run tests for the moved documentation (#19278)
2023-03-28 12:35:27 +02:00
topics.adoc
Moving docs to new folder
2023-03-20 09:07:58 +01:00