Closed joshstrange closed 4 years ago
Your research are right. This parameter has been removed in favor of a whitelist.
The whitelist can be configured with the parameter: -redirect-host-file
https://github.com/tarent/loginsrv/blob/master/login/redirect.go#L97 https://github.com/tarent/loginsrv/blob/master/login/config.go#L154
The parameter: -prevent-external-redirects
Should be removed from the doc.
I'm getting an error trying to use it in caddy and I found this commit which seems to indicate it has been removed in favor of a whitelist
Is it just the readme that is out of date on this or am I missing something else?