From 53438d0c304938808cf91dca58c12bd3da2a3206 Mon Sep 17 00:00:00 2001
From: conblem <mail@conblem.me>
Date: Tue, 17 Dec 2024 10:56:09 +0100
Subject: [PATCH] Improve native redirect uri validation to allow https
 loopback addresses

---
 console/src/app/pipes/redirect-pipe/redirect.pipe.ts | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/console/src/app/pipes/redirect-pipe/redirect.pipe.ts b/console/src/app/pipes/redirect-pipe/redirect.pipe.ts
index 87d7556d4c..4e574dc2d1 100644
--- a/console/src/app/pipes/redirect-pipe/redirect.pipe.ts
+++ b/console/src/app/pipes/redirect-pipe/redirect.pipe.ts
@@ -11,7 +11,12 @@ export class RedirectPipe implements PipeTransform {
         uri.startsWith('http://localhost:') ||
         uri.startsWith('http://127.0.0.1') ||
         uri.startsWith('http://[::1]') ||
-        uri.startsWith('http://[0:0:0:0:0:0:0:1]')
+        uri.startsWith('http://[0:0:0:0:0:0:0:1]') ||
+        uri.startsWith('https://localhost/') ||
+        uri.startsWith('https://localhost:') ||
+        uri.startsWith('https://127.0.0.1') ||
+        uri.startsWith('https://[::1]') ||
+        uri.startsWith('https://[0:0:0:0:0:0:0:1]')
       ) {
         return true;
       }