From 102bd6bf308994abe38ad3f16ffd9f2b91fc17f6 Mon Sep 17 00:00:00 2001
From: Laura Hausmann <laura@hausmann.dev>
Date: Wed, 5 Apr 2023 20:17:44 +0200
Subject: [PATCH] Simplify host restriction

---
 Controllers/RedirectController.cs | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/Controllers/RedirectController.cs b/Controllers/RedirectController.cs
index 4802ceb..14f7f26 100644
--- a/Controllers/RedirectController.cs
+++ b/Controllers/RedirectController.cs
@@ -9,10 +9,8 @@ namespace AutheliaMultiDomainProxy.Controllers;
 public class RedirectController : Controller {
 	public IActionResult Get([FromQuery] string tgt) {
 		// Check if we are on an allowed domain
-		if (!Vars.PermittedDomains.Any(p => Request.Host.Host.EndsWith($".{p}"))) {
-			Response.StatusCode = 421;
+		if (Vars.PermittedDomains.All(p => Request.Host.Host != $"{Vars.AuthProxySubdomain}.{p}"))
 			return StatusCode(StatusCodes.Status421MisdirectedRequest);
-		}
 
 		var dstDomain = AuthHelpers.GetRootDomain(tgt);