Merge pull request #919 from warren5236/redirect-to-home-page-when-lo…

…ggin-in-from-not-logged-in Redirect check so redirect to /not-allowed sends the user back to /
joindin · Apr 24, 2024 · e08915a · e08915a
2 parents d2f8cd5 + b827129
commit e08915a
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/app/src/User/UserController.php b/app/src/User/UserController.php
@@ -896,7 +896,11 @@ protected function handleLogin($result, $redirect = '')
         $user = $userApi->getUser($result->user_uri);
         if ($user) {
             $_SESSION['user'] = $user;
-            if (empty($redirect) || strpos($redirect, '/user/login') === 0) {
+
+            if (empty($redirect)
+                || strpos($redirect, '/user/login') === 0
+                || strpos($redirect, '/not-allowed') === 0
+            ) {
                 $this->application->redirect('/');
             }
             $this->application->redirect($redirect);