Basic and Kratos login flows read return_to from the URL and use it for post-login navigation. Because the value is query-controlled, a crafted login URL can redirect users to an external domain after successful authentication instead of keeping navigation within the app.
Basic and Kratos login flows read
return_tofrom the URL and use it for post-login navigation. Because the value is query-controlled, a crafted login URL can redirect users to an external domain after successful authentication instead of keeping navigation within the app.