QR url scanning should only redirect to white listed urls

[danimoh]

To avoid the risk of users getting phished, only redirect to whitelisted URLs.

[sisou]

What would be whitelisted URLs?

nimiq.com, hub.nimiq.com, safe.nimiq.com?

[sisou]

Or basically everything under *.nimiq.com?

[danimoh]

For the moment we would only need hub.nimiq(-testnet).com. But adding all 3 domains or *.nimiq.com is also fine imo.