Adding upstream version 0.10.1.upstream/0.10.1upstream

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>

1 files changed, 41 insertions, 0 deletions

diff --git a/vendor/ipl/web/src/Common/RedirectOption.php b/vendor/ipl/web/src/Common/RedirectOption.php
new file mode 100644
index 0000000..0d73ef8
--- /dev/null
+++ b/vendor/ipl/web/src/Common/RedirectOption.php
@@ -0,0 +1,41 @@
+<?php
+
+namespace ipl\Web\Common;
+
+use ipl\Html\Contract\FormElement;
+use ipl\Html\Form;
+use LogicException;
+
+trait RedirectOption
+{
+    /**
+     * Create a form element to retrieve the redirect target upon form submit
+     *
+     * @return FormElement
+     */
+    protected function createRedirectOption()
+    {
+        /** @var Form $this */
+        return $this->createElement('hidden', 'redirect');
+    }
+
+    /**
+     * @see Form::getRedirectUrl()
+     */
+    public function getRedirectUrl()
+    {
+        /** @var Form $this */
+        $redirectOption = $this->getValue('redirect');
+        if (! $redirectOption) {
+            return parent::getRedirectUrl();
+        }
+
+        if (! $this->hasElement('CSRFToken') || ! $this->getElement('CSRFToken')->isValid()) {
+            throw new LogicException(
+                'It is not safe to accept redirect targets from submit values without CSRF protection'
+            );
+        }
+
+        return $redirectOption;
+    }
+}