Allow login while proxing a sub-domain

613cc87e · Asher · 811cf336 · 613cc87e
隐藏空白更改
内联并排

Showing with 23 addition and 1 deletion

src/node/http.ts src/node/http.ts +23 -1

未找到文件。
--- a/src/node/http.ts
+++ b/src/node/http.ts
@@ -927,7 +927,29 @@ export class HttpServer {
    }

    // Must be authenticated to use the proxy.
-    route.provider.ensureAuthenticated(request)
+    if (!route.provider.authenticated(request)) {
+      // Attempt to determine if it's the user browsing the root and if so fall
+      // through to allow the login flow.
+      if (request.headers["content-type"] !== "application/json") {
+        switch (route.providerBase) {
+          case "/":
+          case "/static":
+            if (request.method === "GET") {
+              return undefined
+            }
+            break
+          case "/login":
+            if (request.method === "GET" || request.method === "POST") {
+              return undefined
+            }
+            break
+        }
+      }
+
+      // Assume anything else is some kind of request from the proxied
+      // application and return an unauthorized message.
+      throw new HttpError("Unauthorized", HttpCode.Unauthorized)
+    }

    return {
      proxy: {