fix(gatekeeper): use GATEKEEPER_ORIGIN for login redirect URL in ForwardAuth verify

2026-02-27 02:02:48 +01:00
parent 4fdf79b1bb
commit 863fe469d6
1 changed files with 1 additions and 1 deletions
--- a/packages/gatekeeper/src/app/api/verify/route.ts
+++ b/packages/gatekeeper/src/app/api/verify/route.ts
@@ -82,7 +82,7 @@ export async function GET(req: NextRequest) {

  // Traefik ForwardAuth headers
  const gatekeeperUrl =
-    process.env.NEXT_PUBLIC_BASE_URL || `${proto}://gatekeeper.${host}`;
+    process.env.GATEKEEPER_ORIGIN || process.env.NEXT_PUBLIC_BASE_URL || `${proto}://gatekeeper.${host}`;
  const absoluteOriginalUrl = `${proto}://${host}${originalUrl}`;

  const loginUrl = `${gatekeeperUrl}/login?redirect=${encodeURIComponent(absoluteOriginalUrl)}`;