tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-30 01:04:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

InternalUrlValidator: Also check the scheme

Browse Source 
(cherry picked from commit 3187a4e549af978d428ddd9b05ccee7b5766e39e)
This commit is contained in:
Johannes Meyer 2022-12-01 15:50:46 +01:00
parent a82a88a34b
commit c6a05031b8
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
library/Icinga/Web/Form/Validator/InternalUrlValidator.php
View File

@ -3,6 +3,7 @@
namespace Icinga\Web\Form\Validator; namespace Icinga\Web\Form\Validator;
use Icinga\Application\Icinga;
use Zend_Validate_Abstract; use Zend_Validate_Abstract;
use Icinga\Web\Url; use Icinga\Web\Url;
@ -16,7 +17,8 @@ class InternalUrlValidator extends Zend_Validate_Abstract
*/ */
public function isValid($value) public function isValid($value)
{ {
if (Url::fromPath($value)->getRelativeUrl() === '') { $url = Url::fromPath($value);
if ($url->getRelativeUrl() === '' || $url->getScheme() !== Icinga::app()->getRequest()->getScheme()) {
$this->_error('IS_EXTERNAL'); $this->_error('IS_EXTERNAL');
return false; return false;