feat!: validate referer to /reauth is valid

billchurch · May 20, 2022 · 0dcaa6e · 0dcaa6e
1 parent e0742db
commit 0dcaa6e
Showing 1 changed file with 6 additions and 2 deletions.
diff --git a/app/server/routes.js b/app/server/routes.js
@@ -10,11 +10,15 @@ const { parseBool } = require('./util');
 const config = require('./config');
 
 exports.reauth = function reauth(req, res) {
-  const r = req.headers.referer || '/';
+  let { referer } = req.headers;
+  console.log(`referer: ${referer}`);
+  if (!validator.isURL(referer, { host_whitelist: ['localhost'] })) referer = '/';
+  console.log(`referer: ${referer}`);
+
   res
     .status(401)
     .send(
-      `<!DOCTYPE html><html><head><meta http-equiv="refresh" content="0; url=${r}"></head><body bgcolor="#000"></body></html>`
+      `<!DOCTYPE html><html><head><meta http-equiv="refresh" content="0; url=${referer}"></head><body bgcolor="#000"></body></html>`
     );
 };