Fix loginRequestPath

SavinduDimal · SavinduDimal · commit 897b78b48a8a · 2023-09-14T12:42:23.000+05:30
diff --git a/modules/distribution/product/src/main/extensions/basicauth.jsp b/modules/distribution/product/src/main/extensions/basicauth.jsp
@@ -93,14 +93,16 @@
 
                     if (userName.value) {
                         let contextPath = "<%=proxyContextPath%>"
+                        let loginRequestPath = "<%=loginContextRequestUrl%>"
                         if (contextPath !== "") {
                             contextPath = contextPath.startsWith('/') ? contextPath : "/" + contextPath
                             contextPath = contextPath.endsWith('/') ?
                                 contextPath.substring(0, contextPath.length - 1) : contextPath
+                            loginRequestPath = loginRequestPath.startsWith('../') ? loginRequestPath.substring(2, loginRequestPath.length) : loginRequestPath
                         }
                         $.ajax({
                             type: "GET",
-                            url: contextPath + "<%=loginContextRequestUrl%>",
+                            url: contextPath + loginRequestPath,
                             xhrFields: { withCredentials: true },
                             success: function (data) {
                                 if (data && data.status == 'redirect' && data.redirectUrl && data.redirectUrl.length > 0) {
diff --git a/modules/distribution/product/src/main/extensions/login.jsp b/modules/distribution/product/src/main/extensions/login.jsp
@@ -501,9 +501,13 @@
     <script>
         function checkSessionKey() {
             var proxyPath = "<%=contextPath%>"
+            let loginRequestPath = "<%=loginContextRequestUrl%>"
+            if (proxyPath !== "") {
+                loginRequestPath = loginRequestPath.startsWith('../') ? loginRequestPath.substring(2, loginRequestPath.length) : loginRequestPath
+            }
             $.ajax({
                 type: "GET",
-                url: proxyPath + "<%=loginContextRequestUrl%>",
+                url: proxyPath + loginRequestPath,
                 xhrFields: { withCredentials: true },
                 success: function (data) {
                     if (data && data.status == 'redirect' && data.redirectUrl && data.redirectUrl.length > 0) {
diff --git a/modules/distribution/product/src/main/resources/conf/templates/repository/conf/tomcat/carbon/WEB-INF/web.xml.j2 b/modules/distribution/product/src/main/resources/conf/templates/repository/conf/tomcat/carbon/WEB-INF/web.xml.j2
@@ -26,6 +26,10 @@
         <param-name>Owasp.CsrfGuard.Config</param-name>
         <param-value>repository/conf/security/Owasp.CsrfGuard.Carbon.properties</param-value>
     </context-param>
+    <context-param>
+        <param-name>contextPath</param-name>
+        <param-value>{{server.proxy_context_path}}</param-value>
+    </context-param>
 
     <servlet id="bridge">
         <servlet-name>bridgeservlet</servlet-name>
