Describe the bug
Hello,
After playing with CSRF & HTTPS, it seems that Context.Request().URL is not correctly filled, hence failing the referrer check at that line:
valid := sameOrigin(ctx.Request().URL, referer)
To Reproduce
Steps to reproduce the behavior:
- Print the Context.Request().URL.Scheme or .Host when inside a middleware
Expected behavior
We should get part of the URL depending on below schema:
scheme://host.domain:port/path/to/request
actually we're only getting the path part
/path/to/request
Screenshots
see attached screenshot if it helps
ctx.Request().URL showing the path
trying to query ctx.Request().URL.Host
Desktop (please complete the following information):
- Client is running Windows 10,
- Server is running Raspbian 10,
iris.Version
Additional context
Add any other context about the problem here.
Describe the bug
Hello,
After playing with CSRF & HTTPS, it seems that Context.Request().URL is not correctly filled, hence failing the referrer check at that line:
To Reproduce
Steps to reproduce the behavior:
Expected behavior
We should get part of the URL depending on below schema:
scheme://host.domain:port/path/to/request
actually we're only getting the path part
/path/to/request
Screenshots
see attached screenshot if it helps
ctx.Request().URL showing the path
trying to query ctx.Request().URL.Host
Desktop (please complete the following information):
iris.Version
Additional context
Add any other context about the problem here.