Conversation
rhkr8521
reviewed
Feb 9, 2026
Comment on lines
+58
to
+59
| // 프론트에서 보낸 redirectUri가 있으면 그것을 사용하고, 없으면 설정 파일의 기본값을 사용 | ||
| String finalRedirectUri = (redirectUri != null && !redirectUri.isBlank()) ? redirectUri : defaultRedirectUri; |
Member
There was a problem hiding this comment.
redirectUri를 직접 전송하는것 보단 local, deploy 처럼 서버에 두 Uri를 저장하고 서버에서 직접 관리하는게 좋을거같아요! 오픈 리다이렉트 피싱으로 공격이 이루어질수있어요!
Contributor
Author
There was a problem hiding this comment.
서버에서 직접 관리하는 방식으로 변경하였습니다! 조언 감사합니다.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
📣 Related Issue
📝 Summary
📬 Reference