From f854a8e8fdfc5fe0dd026afadd5de9492483abfe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martynas=20Mickevi=C4=8Dius?= <self@2m.lt>
Date: Sun, 9 Aug 2020 11:47:25 +0300
Subject: [PATCH] Encode redirect URL value

---
 src/main/java/com/example/FakeAuthServlet.java | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/main/java/com/example/FakeAuthServlet.java b/src/main/java/com/example/FakeAuthServlet.java
index f28b1dd..6979689 100644
--- a/src/main/java/com/example/FakeAuthServlet.java
+++ b/src/main/java/com/example/FakeAuthServlet.java
@@ -18,6 +18,7 @@
 
 import java.io.IOException;
 import java.net.URLDecoder;
+import java.net.URLEncoder;
 
 import javax.servlet.annotation.WebServlet;
 import javax.servlet.http.HttpServlet;
@@ -36,7 +37,7 @@ protected void doGet(HttpServletRequest req, HttpServletResponse res) throws IOE
             URLDecoder.decode(req.getParameter("redirect_uri"), "UTF8"),
             "xxxxxx",
             req.getParameter("state"));
-    String loginUrl = res.encodeRedirectURL("/login?responseurl=" + redirectURL);
+    String loginUrl = res.encodeRedirectURL("/login?responseurl=" + URLEncoder.encode(redirectURL, "UTF8"));
     res.setStatus(HttpServletResponse.SC_MOVED_TEMPORARILY);
     res.setHeader("Location", loginUrl);
     res.getWriter().flush();