mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-18 22:07:32 +00:00
4e1e8a714a
* fix: dont (re)generate client secret with auth type none * fix(cors): allow Origin from request * feat: add origin allow list and fix some core issues * rename migration * fix UserIDsByDomain * check origin on userinfo * update oidc pkg
24 lines
396 B
Go
24 lines
396 B
Go
package http
|
|
|
|
import (
|
|
"fmt"
|
|
"net/url"
|
|
)
|
|
|
|
func GetOriginFromURLString(s string) (string, error) {
|
|
parsed, err := url.Parse(s)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return fmt.Sprintf("%s://%s", parsed.Scheme, parsed.Host), nil
|
|
}
|
|
|
|
func IsOriginAllowed(allowList []string, origin string) bool {
|
|
for _, allowed := range allowList {
|
|
if allowed == origin {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|