Browse Source
redirect with missing session state instead of starting auth again
pull/96/head
Aaron Parecki
7 years ago
No known key found for this signature in database
GPG Key ID: 276C2817346D6056
1 changed files with
1 additions and
1 deletions
-
controllers/auth.php
|
@ -131,7 +131,7 @@ $app->get('/auth/callback', function() use($app) { |
|
|
|
|
|
|
|
|
// If there is no state in the session, start the login again
|
|
|
// If there is no state in the session, start the login again
|
|
|
if(!array_key_exists('auth_state', $_SESSION)) { |
|
|
if(!array_key_exists('auth_state', $_SESSION)) { |
|
|
$app->redirect('/auth/start?me='.urlencode($params['me'])); |
|
|
|
|
|
|
|
|
$app->redirect('/?error=missing_session_state'); |
|
|
return; |
|
|
return; |
|
|
} |
|
|
} |
|
|
|
|
|
|
|
|