Fix login redirect when use_secure_urls == true

bartnv / twofactor_webauthn

Roundcube plugin for FIDO2/WebAuthn 2-factor authentication

GNU General Public License v3.0

29 stars 7 forks source link

Fix login redirect when use_secure_urls == true #9

Closed gurnec closed 3 years ago

gurnec commented 3 years ago

When the use_secure_urls config setting is true, a successful login redirects to roundcubemail's root path without the url token. This (eventually) results in the ominous error below. This small update should fix this.

REQUEST CHECK FAILED

For your protection, access to this resource is secured against CSRF.
If you see this, you probably didn't log out before leaving the web application.

Human interaction is now required to continue.

gurnec commented 3 years ago

Thanks. And thank you for this excellent plugin!