Auth: Login redirect triggered depending on the FQDN

[gaussianrecurrence]

Issue submitter TODO list

• I've looked up my issue in FAQ
• I've searched for an already existing issues here
• I've tried running main-labeled docker image and the issue still persists there
• I'm running a supported version of the application which is listed here

Describe the bug (actual behavior)

Whenever configuring Google OAuth2, it was noted that after a succesful login the React webapp was still redirecting towards the /login.

Expected behavior

Upon succesful login with Google OAuth2, the webapp should redirect to the main view.

Your installation details

Web-UI version: v1.3.0
Helm chat version: version.BuildInfo{Version:"v3.18.4", GitCommit:"d80839cf37d860c8aa9a0503fe463278f26cd5e2", GitTreeState:"clean", GoVersion:"go1.24.5"}
My configuration is:

auth:
  type: OAUTH2
  oauth2:
    client:
      google:
        provider: google
        clientId: ******.apps.googleusercontent.com
        clientSecret: GOCSPX-*************
        redirect-uri: https://domain/login/oauth2/code/google
        user-name-attribute: email
        custom-params:
          type: google
          allowedDomains:
            - domain1
            - domain2
rbac:
  roles:
    - name: "admins"
      clusters:
        - local
      subjects:
        - provider: oauth_google  # e.g. oauth_{client_name}, ldap
          type: domain  # domain, organization, user, group
          value: "domain1"
          regex: false
        - provider: oauth_google  # e.g. oauth_{client_name}, ldap
          type: domain  # domain, organization, user, group
          value: "domain2"
          regex: false
        - provider: oauth_google
          type: user
          value: "user1@domain2"
      permissions:
        - resource: applicationconfig
          actions: all
        - resource: clusterconfig
          actions: all
        - resource: topic
          value: ".*"
          actions: all
        - resource: consumer
          value: ".*"
          actions: all
        - resource: schema
          value: ".*"
          actions: all
        - resource: connect
          value: ".*"
          actions: all
        - resource: ksql
          actions: all
        - resource: acl
          actions: all
        - resource: audit
          actions: all

Steps to reproduce

• Switch to 1.3.0 tag
• Build the project and docker image.
• Configure an OAuth2 Google project.
• Create the configuration with OAuth2 Google details.
• Setup an FQDN for the deployment.
• Try to log-in using Google OAuth2 authentication.

Screenshots

No response

Logs

No response

Additional context

We have a deployment under this FQDN: kafka-ui-authn.private.sta.k8s.domain1.com where it's failing to redirect to the main view instead of the login one.

Verifying from a local deployment, this behavior can't be observed and login works fine.

[github-actions]

Hi gaussianrecurrence! 👋

Welcome, and thank you for opening your first issue in the repo!

Please wait for triaging by our maintainers.

As development is carried out in our spare time, you can support us by sponsoring our activities or even funding the development of specific issues.
Sponsorship link

If you plan to raise a PR for this issue, please take a look at our contributing guide.

[gaussianrecurrence]

After further investigation, it was identified the issue was related to the FQDN used, as it contained auth in it.
It seems in here frontend/src/components/contexts/GlobalSettingsContext.tsx#26 the webapp redirects to /login if the appInfo redirect flag is set to true.
Such flag is set to true in here frontend/src/lib/hooks/api/appConfig.ts#42 if the /api/info request URL contains auth, which in our case, it's on the FQDN.