Browse Source

redirect with missing session state instead of starting auth again

pull/96/head
Aaron Parecki 7 years ago
parent
commit
606afdeb10
No known key found for this signature in database GPG Key ID: 276C2817346D6056
  1. 2
      controllers/auth.php

2
controllers/auth.php

@ -131,7 +131,7 @@ $app->get('/auth/callback', function() use($app) {
// If there is no state in the session, start the login again // If there is no state in the session, start the login again
if(!array_key_exists('auth_state', $_SESSION)) { if(!array_key_exists('auth_state', $_SESSION)) {
$app->redirect('/auth/start?me='.urlencode($params['me']));
$app->redirect('/?error=missing_session_state');
return; return;
} }

Loading…
Cancel
Save