diff options
| author | Ron Lucke <lucke@elan-ev.de> | 2025-07-08 20:28:37 +0200 |
|---|---|---|
| committer | Jan-Hendrik Willms <tleilax+studip@gmail.com> | 2025-07-11 10:01:00 +0200 |
| commit | ac233209d548f310dfa3bde658ea0383f3c55e18 (patch) | |
| tree | 814f9e2f1c984e7866164db63e730edb6494fd6d /app | |
| parent | 2ceda044b811dbfb5191923078ffe7a1d6377624 (diff) | |
Klick auf das Ankündigungen-Symbol kann zur falschen Stelle führen
Closes #5559
Merge request studip/studip!4225
Diffstat (limited to 'app')
| -rw-r--r-- | app/controllers/institute/overview.php | 11 |
1 files changed, 8 insertions, 3 deletions
diff --git a/app/controllers/institute/overview.php b/app/controllers/institute/overview.php index 66d55e1..f002b29 100644 --- a/app/controllers/institute/overview.php +++ b/app/controllers/institute/overview.php @@ -57,13 +57,18 @@ class Institute_OverviewController extends AuthenticatedController { //gibt es eine Anweisung zur Umleitung? $redirect_to = Request::get('redirect_to'); - if ($redirect_to) { + if ( + $redirect_to + && !( + str_starts_with($redirect_to, '#') + || str_starts_with($redirect_to, '?') + ) + ) { if (!is_internal_url($redirect_to)) { throw new Exception('Invalid redirection'); } - $this->response->add_header('Location', URLHelper::getURL($redirect_to, ['cid' => $this->institute_id])); - $this->render_nothing(); + $this->redirect(URLHelper::getURL($redirect_to, ['cid' => $this->institute_id])); return; } |