diff --git a/lib/devise/controllers/store_location.rb b/lib/devise/controllers/store_location.rb
index 845c54b1..b83fbb9a 100644
--- a/lib/devise/controllers/store_location.rb
+++ b/lib/devise/controllers/store_location.rb
@@ -1,3 +1,5 @@
+require "uri"
+
 module Devise
   module Controllers
     # Provide the ability to store a location.
@@ -31,7 +33,7 @@ module Devise
       #
       def store_location_for(resource_or_scope, location)
         session_key = stored_location_key_for(resource_or_scope)
-        session[session_key] = location
+        session[session_key] = URI.parse(location).path
       end
 
       private
diff --git a/test/controllers/helpers_test.rb b/test/controllers/helpers_test.rb
index 9b10587d..fee034be 100644
--- a/test/controllers/helpers_test.rb
+++ b/test/controllers/helpers_test.rb
@@ -198,6 +198,12 @@ class ControllerAuthenticatableTest < ActionController::TestCase
     assert_equal "/foo.bar", @controller.stored_location_for(User.new)
   end
 
+  test 'store location for stores only paths' do
+    assert_nil @controller.stored_location_for(:user)
+    @controller.store_location_for(:user, "//host/foo.bar")
+    assert_equal "/foo.bar", @controller.stored_location_for(:user)
+  end
+
   test 'after sign in path defaults to root path if none by was specified for the given scope' do
     assert_equal root_path, @controller.after_sign_in_path_for(:user)
   end