From 71e41158759ce3a3ae042af3a9bb0a060940d2db Mon Sep 17 00:00:00 2001
From: Maxime Besson <maxime.besson@worteks.com>
Date: Fri, 9 Jul 2021 15:02:20 +0200
Subject: [PATCH] Make sure empty referers are valid during logout

---
 lemonldap-ng-portal/t/03-XSS-protection.t | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/lemonldap-ng-portal/t/03-XSS-protection.t b/lemonldap-ng-portal/t/03-XSS-protection.t
index 032481593..e12a52b8e 100644
--- a/lemonldap-ng-portal/t/03-XSS-protection.t
+++ b/lemonldap-ng-portal/t/03-XSS-protection.t
@@ -97,6 +97,11 @@ my @tests = (
     'aHR0cDovL3d3dz88c2NyaXB0Pg==',
     'http://test1.example.com/' => 0,
     'script with logout',
+
+    # 21 url=http://www.toto.com/, no referer
+    'aHR0cDovL3d3dy50b3RvLmNvbS8=',
+    '' => 1,
+    'Logout required by good site, empty referer',
 );
 
 my $res;