support redirecting to location the user actually want to go to before being forced to change his/her password

2018-07-23 15:45:39 +01:00 · 2018-07-23 15:45:39 +01:00 · e0f8fd8ef2
commit e0f8fd8ef2
parent 4ebdfc111a
2 changed files with 8 additions and 0 deletions
--- a/modules/context/auth.go
+++ b/modules/context/auth.go
@ -52,6 +52,7 @@ func Toggle(options *ToggleOptions) macaron.Handler {
 			if ctx.User.MustChangePassword {
 				ctx.Data["Title"] = ctx.Tr("auth.must_change_password")
 				ctx.Data["ChangePasscodeLink"] = setting.AppSubURL + "/user/change_password"
+				ctx.SetCookie("redirect_to", url.QueryEscape(setting.AppSubURL+ctx.Req.RequestURI), 0, setting.AppSubURL)
 				ctx.Redirect(setting.AppSubURL + "/user/settings/change_password")
 				return
 			}
--- a/routers/user/auth.go
+++ b/routers/user/auth.go
@ -1247,5 +1247,12 @@ func MustChangePasswordPost(ctx *context.Context, cpt *captcha.Captcha, form aut
 	ctx.Flash.Success(ctx.Tr("settings.change_password_success"))

 	log.Trace("User updated password: %s", u.Name)
+
+	if redirectTo, _ := url.QueryUnescape(ctx.GetCookie("redirect_to")); len(redirectTo) > 0 && !util.IsExternalURL(redirectTo) {
+		ctx.SetCookie("redirect_to", "", -1, setting.AppSubURL)
+		ctx.RedirectToFirst(redirectTo)
+		return
+	}
+
 	ctx.Redirect(setting.AppSubURL + "/")
 }