GUAC-1119: Redirect to login ONLY for requests to /api/tokens, and ONLY if not already at login.

2025-09-06 13:17:41 +00:00 · 2015-03-11 15:10:00 -07:00
parent ce2b091afb
commit 86ce781d8e
1 changed files with 14 additions and 7 deletions
--- a/guacamole/src/main/webapp/app/index/services/authenticationInterceptor.js
+++ b/guacamole/src/main/webapp/app/index/services/authenticationInterceptor.js
@@ -24,17 +24,24 @@ angular.module('index').factory('authenticationInterceptor', ['$location', '$q',
        function authenticationInterceptor($location, $q) {
            
    return {
-        'response': function(response) {
-            return response || $q.when(response);
-        },

-        'responseError': function(rejection) {
-            // Do not redirect failed api requests.
+        // Redirect users to login if authorization fails
+        responseError: function handleErrorResponse(rejection) {
+
+            // Only redirect failed authentication requests
            if ((rejection.status === 401 || rejection.status === 403)
-                    && rejection.config.url.search('api/') === -1) {
-                $location.path('/login');
+                    && rejection.config.url  === 'api/tokens') {
+
+                // Only redirect if not already on login page
+                if ($location.path() !== '/login/')
+                    $location.path('/login/');
+
            }
+
            return $q.reject(rejection);
+
        }
+
    };
+
 }]);