From 7b501e0004067cc48fadf12dbc34d01b37faf238 Mon Sep 17 00:00:00 2001
From: Alexander VanTol <Avantol13@users.noreply.github.com>
Date: Fri, 4 Jun 2021 11:44:21 -0500
Subject: [PATCH] Update link.py

---
 fence/blueprints/link.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/fence/blueprints/link.py b/fence/blueprints/link.py
index 988a52816..e6cfb8dfc 100644
--- a/fence/blueprints/link.py
+++ b/fence/blueprints/link.py
@@ -7,6 +7,7 @@
 from cdislogging import get_logger
 
 from cirrus import GoogleCloudManager
+from fence.blueprints.login.redirect import validate_redirect
 from fence.restful import RestfulApi
 from fence.errors import NotFound
 from fence.errors import Unauthorized
@@ -101,6 +102,9 @@ def delete(self):
     def _link_google_account():
         provided_redirect = flask.request.args.get("redirect")
 
+        # will raise UserError if invalid
+        validate_redirect(provided_redirect)
+
         if not provided_redirect:
             raise UserError({"error": "No redirect provided."})