diff --git a/bitwarden_license/src/Sso/Utilities/OpenIdConnectOptionsExtensions.cs b/bitwarden_license/src/Sso/Utilities/OpenIdConnectOptionsExtensions.cs index e99a98418f..758629e757 100644 --- a/bitwarden_license/src/Sso/Utilities/OpenIdConnectOptionsExtensions.cs +++ b/bitwarden_license/src/Sso/Utilities/OpenIdConnectOptionsExtensions.cs @@ -25,16 +25,6 @@ namespace Bit.Sso.Utilities return true; } - // Determine if the Authority matches the Referrer (short-cut) - var referrer = context.Request.Headers["Referer"].FirstOrDefault(); - if (!string.IsNullOrWhiteSpace(referrer) && - Uri.TryCreate(options.Authority, UriKind.Absolute, out var authorityUri) && - Uri.TryCreate(referrer, UriKind.Absolute, out var referrerUri) && - (referrerUri.IsBaseOf(authorityUri) || authorityUri.IsBaseOf(referrerUri))) - { - return true; - } - try { // Parse out the message diff --git a/bitwarden_license/src/Sso/Utilities/Saml2OptionsExtensions.cs b/bitwarden_license/src/Sso/Utilities/Saml2OptionsExtensions.cs index 680918c852..3f3dbec0bd 100644 --- a/bitwarden_license/src/Sso/Utilities/Saml2OptionsExtensions.cs +++ b/bitwarden_license/src/Sso/Utilities/Saml2OptionsExtensions.cs @@ -32,20 +32,6 @@ namespace Bit.Sso.Utilities return true; } - // Determine if the Authority matches the Referrer (short-cut) - var referrer = context.Request.Headers["Referer"].FirstOrDefault(); - if (!string.IsNullOrWhiteSpace(referrer) && - Uri.TryCreate(referrer, UriKind.Absolute, out var referrerUri) && - (referrerUri.IsBaseOf(idp.SingleSignOnServiceUrl) || - idp.SingleSignOnServiceUrl.IsBaseOf(referrerUri) || - referrerUri.IsBaseOf(idp.SingleLogoutServiceUrl) || - idp.SingleLogoutServiceUrl.IsBaseOf(referrerUri) || - referrerUri.IsBaseOf(idp.SingleLogoutServiceResponseUrl) || - idp.SingleLogoutServiceResponseUrl.IsBaseOf(referrerUri))) - { - return true; - } - // We need to pull out and parse the response or request SAML envelope XmlElement assertion = null; try