We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent b3f5f84 commit a7073f9Copy full SHA for a7073f9
1 file changed
src/main/java/org/patinanetwork/codebloom/api/auth/AuthController.java
@@ -260,7 +260,7 @@ public ResponseEntity<ApiResponder<Empty>> enrollSchool(
260
public RedirectView verifySchoolEmail(final HttpServletRequest request) {
261
String referer = request.getHeader("Referer");
262
String allowedDomain = serverUrlUtils.getUrl();
263
- boolean validOrigin = (referer != null && referer.startsWith(allowedDomain));
+ boolean validOrigin = (referer == null || referer.startsWith(allowedDomain));
264
265
if (!validOrigin) {
266
return new RedirectView("/settings?success=false&message=Invalid request origin");
0 commit comments