search

Widen / cloudfront-auth

An AWS CloudFront Lambda@Edge function to authenticate requests using Google Apps, Microsoft, Auth0, OKTA, and GitHub login
ISC License
623 stars 148 forks source link

Very basic XSS prevention #74

Closed thomasdbock closed 3 years ago

thomasdbock commented 3 years ago

Replacing these error variables creates an opportunity for XSS, encoding the strings is a quick fix for this

payton commented 3 years ago

Thanks for this, @thomasdbock !