Details
-
Task
-
Status: Closed (View Workflow)
-
Minor
-
Resolution: Fixed
-
None
-
None
Description
The `permitRedirect` option is actually enabled by default.
Default must be changed to: redirects must be only allowed when the connection is secure (using full SSL, fingerprint validation, localhost, etc.).
You can explicitly set this option to true to always allow redirects or false to always block them.