fix: add valid origin check for cors (#83)

Resolves #72
2021-12-21 18:46:54 +05:30
parent bdbbe4adee
commit 8f7582e1ec
12 changed files with 180 additions and 59 deletions
--- a/server/handlers/app.go
+++ b/server/handlers/app.go
@@ -49,7 +49,7 @@ func AppHandler() gin.HandlerFunc {
 			stateObj.RedirectURL = strings.TrimSuffix(stateObj.RedirectURL, "/")

 			// validate redirect url with allowed origins
-			if !utils.IsValidRedirectURL(stateObj.RedirectURL) {
+			if !utils.IsValidOrigin(stateObj.RedirectURL) {
 				c.JSON(400, gin.H{"error": "invalid redirect url"})
 				return
 			}