This project is not covered by Drupal’s security advisory policy.
The User Agent Page Killer module prevents requests from user agents that match a
pattern from completing a request. This module was developed for a
specific use case involving SSO and how it interacts with Microsoft Office apps.
The details of this problem can be seen on this microsoft issue.
When a link is clicked from an office document, the office application recognizes
that the link is being redirected to the SSO login page. Instead of opening the
original url the office application attempts to open the redirect url. This
happens even if the redirect is a temporary redirect or a 302. This often causes
the user to receive an access denied error instead of the original url. The functionality
of this module prevents certain user agents from being redirected by killing the
request before the redirect happens. This forces Office to use the original url
as intended. This module's code is based on this stack exchange post.
Project information
- Project categories: Security
8 sites report using this module- Created by saltwaterskin on , updated
This project is not covered by the security advisory policy.
Use at your own risk! It may have publicly disclosed vulnerabilities.
