Fix Content-Security-Policy when using sso-redirect (mastodon#32241)

ClearlyClaire · Oct 4, 2024 · 81cd489 · 81cd489
1 parent 55b5364
commit 81cd489
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/app/controllers/concerns/web_app_controller_concern.rb b/app/controllers/concerns/web_app_controller_concern.rb
@@ -13,7 +13,7 @@ module WebAppControllerConcern
       policy = ContentSecurityPolicy.new
 
       if policy.sso_host.present?
-        p.form_action policy.sso_host
+        p.form_action policy.sso_host, -> { "https://#{request.host}/auth/auth/" }
       else
         p.form_action :none
       end