Redirect to requested resource after login

2024-07-14 13:38:36 +02:00 · 2024-07-14 13:38:36 +02:00 · 092a01cdb2
parent 35c287e082
commit 092a01cdb2
2 changed files with 16 additions and 3 deletions
--- a/src/frontend/auth.rs
+++ b/src/frontend/auth.rs
@ -49,10 +49,16 @@ struct LoginForm {
    password: String,
 }
 #[derive(Deserialize)]
 struct LoginQuery {
    redirect_to: Option<String>,
 }
 #[post("/login")]
 async fn login(
    req: HttpRequest,
    form: web::Form<LoginForm>,
    query: web::Query<LoginQuery>,
 ) -> Result<impl Responder, error::Error> {
    // Very basic authentication for now (only password, hardcoded in environment variable)
    if form.password
@ -61,9 +67,12 @@ async fn login(
    {
        Identity::login(&req.extensions(), "superuser".into())
            .map_err(error::ErrorInternalServerError)?;
-        Ok(web::Redirect::to("/".to_owned()).see_other())
+        Ok(
            web::Redirect::to(query.into_inner().redirect_to.unwrap_or("/".to_string()))
                .see_other(),
        )
    } else {
-        Ok(web::Redirect::to("/login".to_owned()).see_other())
+        Ok(web::Redirect::to(req.uri().to_string()).see_other())
    }
 }
--- a/src/middleware/error_handlers.rs
+++ b/src/middleware/error_handlers.rs
@ -8,10 +8,14 @@ use actix_web::{dev::ServiceResponse, error, HttpResponse};
 pub fn redirect_to_login<B>(
    res: ServiceResponse<B>,
 ) -> Result<ErrorHandlerResponse<B>, error::Error> {
    let redirect_to = format!(
        "/login?{}",
        serde_urlencoded::to_string(&[("redirect_to", res.request().uri().to_string())])?
    );
    Ok(ErrorHandlerResponse::Response(
        res.into_response(
            HttpResponse::SeeOther()
-                .insert_header(("Location", "/login"))
+                .insert_header(("Location", redirect_to))
                .finish()
                .map_into_right_body(),
        ),