Questions Linux Laravel Mysql Ubuntu Git Menu

HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin

What does 'the URL is local' mean?

Tags:

url

asp.net-mvc

I am debugging some code and there is this check (in an ASP.NET MVC controller)

if (Url.IsLocalUrl(returnUrl))

So I check the documentation and it says Returns a value that indicates whether the URL is local.

But what does that mean, 'the URL is local'?

If I hit a webserver, when does the webserver say 'the URL is local' ?

like image

476

asked Sep 07 '16 14:09

Michel

People also ask

How do I find my localhost URL?

Usually, you can access the localhost of any computer through the loopback address 127.0. 0.1. By default, this IP address references a server running on the current device. In other words, when your computer requests the IP address 127.0.

1 Answers

In the ASP.NET MVC blog Preventing Open Redirection Attacks (C#) you can find an explanation of why you should use it, but, as is tradition with MVC's documentation, it's not explained how it works.

You can read that from the source presented there though: it checks whether an URL starts with / or ~/, meaning: whether it is a relative URL which thereby points to the same domain.

like image

78

answered Oct 16 '22 02:10

CodeCaster

Sign in to Comment

Related questions
                            
                                Request BinaryRead in ASP.NET 5 (MVC6)
                            
                                Autofac register interface MediatR
                            
                                .NET MVC file upload - Overlapped I/O operation is in progress
                            
                                layouts and different content and styles, complex MVC4 application
                            
                                Azure SQL : Will Applying Index Advisor Changes Impact EF Migrations?
                            
                                ASP.NET Identity login with custom Facebook & Google buttons
                            
                                Google Drive API - Can I integrate Google Docs in my web application?
                            
                                Adding role to AspNetUserRoles table in ASP.NET Identity
                            
                                How to avoid Object reference not set to instance of object error with FirstOrDefault?
                            
                                Assign ID to Html.DropDownListFor
                            
                                Custom Auth using OWIN on Asp Mvc
                            
                                What causes SignInManager.SendTwoFactorCodeAsync to return false?
                            
                                Notification system/service in C# with ASP.NET MVC
                            
                                Change Global Settings Config in SignalR Core
                            
                                NLog. Write logs into different tables
                            
                                Get the user id of a username identity 2.0
                            
                                Does Too many ids hurt performance
                            
                                After installing AspNet5RC1, can no longer open cshtml files in any previous / new MVC project
                            
                                ASP.NET MVC data annotation for currency format
                            
                                Asp.net MVC how to populate dropdown list with numbers

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With