* * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ /** * \file htdocs/core/modules/openid_connect/public/callback.php * \ingroup openid_connect * \brief OpenID Connect: Authorization Code flow authentication */ define('NOLOGIN', '1'); if (!defined('NOTOKENRENEWAL')) { define('NOTOKENRENEWAL', '1'); } require '../../../main.inc.php'; require_once DOL_DOCUMENT_ROOT.'/core/lib/functions.lib.php'; /** * @var string $dolibarr_main_url_root * @var string $dolibarr_main_force_https */ // Javascript code on logon page only to detect user tz, dst_observed, dst_first, dst_second $arrayofjs = array( '/includes/jstz/jstz.min.js'.(empty($conf->dol_use_jmobile) ? '' : '?version='.urlencode(DOL_VERSION)), '/core/js/dst.js'.(empty($conf->dol_use_jmobile) ? '' : '?version='.urlencode(DOL_VERSION)) ); top_htmlhead('', '', 0, 0, $arrayofjs); $prefix = dol_getprefix(''); $callbackUrl = $_COOKIE["DOL_rollback_url_".$prefix]; // Was set by login page to $_SERVER['REQUEST_URI'] to allow come back to initial requested page if (empty($callbackUrl) || !preg_match('/^\/[a-z0-9]/i', $callbackUrl)) { // We accept only value that is an internal relative URL. URL starting with http are not allowed. $callbackUrl = '/'; } if ($callbackUrl === '/') { $callbackUrl = $dolibarr_main_url_root . '/index.php?mainmenu=home&leftmenu='; } else { dolSetCookie('DOL_rollback_url_'.dol_getprefix(''), "", time() + 1); } ?>