diff --git a/src/main/java/org/jenkinsci/plugins/googlelogin/GoogleOAuth2SecurityRealm.java b/src/main/java/org/jenkinsci/plugins/googlelogin/GoogleOAuth2SecurityRealm.java
index e8f2384..2ca0578 100644
--- a/src/main/java/org/jenkinsci/plugins/googlelogin/GoogleOAuth2SecurityRealm.java
+++ b/src/main/java/org/jenkinsci/plugins/googlelogin/GoogleOAuth2SecurityRealm.java
@@ -159,9 +159,9 @@ protected String getPostLogOutUrl(StaplerRequest req, Authentication auth) {
      */
     public HttpResponse doCommenceLogin(@QueryParameter String from,  @Header("Referer") final String referer) throws IOException {
         final String redirectOnFinish;
-        if (from != null) {
+        if (from != null && ! Util.isAbsoluteUri(from) && ! from.startsWith("//")) {
             redirectOnFinish = from;
-        } else if (referer != null) {
+        } else if (referer != null && ! Util.isAbsoluteUri(referer) && ! referer.startsWith("//")) {
             redirectOnFinish = referer;
         } else {
             redirectOnFinish = Jenkins.getInstance().getRootUrl();