GO-2024-3228: Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect') in github.com/coder/coder
The highest tagged major version is
v2.
package
Version:
v0.4.0
Opens a new window with list of versions in this module.
Published: Apr 6, 2022
License: AGPL-3.0
Opens a new window with license information.
Imports: 9
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
Read decodes JSON from the HTTP request into the value provided.
It uses go-validator to validate the incoming request body.
WebsocketCloseSprintf formats a websocket close message and ensures it is
truncated to the maximum allowed length.
Write outputs a standardized format to an HTTP response body.
type Error struct {
Field string `json:"field" validate:"required"`
Code string `json:"code" validate:"required"`
}
Error represents a scoped error to a user input.
type Response struct {
Message string `json:"message" validate:"required"`
Errors []Error `json:"errors,omitempty" validate:"required"`
}
Response represents a generic HTTP response.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.