Enum RedirectError 

pub enum RedirectError {
    EmptyUri,
    ProtocolRelative,
    BackslashInPath,
    SchemeNotAllowed {
        scheme: String,
    },
    HostNotAllowed {
        host: String,
    },
}

Why a redirect URI was rejected by the safe-by-default validators (Redirect::to, Redirect::permanent, Redirect::temporary).

br-asupersync-0hj233: this enum surfaces the open-redirect defense as an explicit error type so callers either (a) handle the error (return 400 to the user) or (b) opt into the explicit Redirect::external_unchecked escape hatch when they truly need to redirect to an external host (OAuth callbacks, payment-gateway hand-offs, etc.).

Variants

EmptyUri

URI is empty.

ProtocolRelative

URI starts with // — protocol-relative, browser switches host to whatever follows the slashes. Trivial open-redirect vector that defeats naive starts_with("/") defenses.

BackslashInPath

URI contains a backslash (\). Some HTTP intermediaries and browsers normalize \ → /, so /\\attacker.com/x becomes //attacker.com/x — the protocol-relative attack via a different parser quirk.

SchemeNotAllowed

URI has a scheme other than http or https (e.g., javascript:, data:, file:, ftp:). javascript: redirects in Location headers were historically followed by some browsers and remain a source of XSS.

Fields

scheme: String

The rejected scheme (e.g., "javascript").

HostNotAllowed

URI has an absolute http(s) URL but its host is not in the caller-provided allowed_hosts allowlist.

Fields

host: String

The host that was rejected.

Trait Implementations

impl Clone for RedirectError

fn clone(&self) -> RedirectError

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for RedirectError

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Display for RedirectError

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Error for RedirectError

fn source(&self) -> Option<&(dyn Error + 'static)>

Returns the lower-level source of this error, if any.

fn description(&self) -> &str

👎Deprecated since 1.42.0:

use the Display impl or to_string()

fn cause(&self) -> Option<&dyn Error>

👎Deprecated since 1.33.0:

replaced by Error::source, which can support downcasting

fn provide<'a>(&'a self, request: &mut Request<'a>)

🔬This is a nightly-only experimental API. (error_generic_member_access)

Provides type-based access to context intended for error reports.

impl PartialEq for RedirectError

fn eq(&self, other: &RedirectError) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Eq for RedirectError

impl StructuralPartialEq for RedirectError