Enhanced Paperless login redirect fix with monkey patching

- Add monkey patch to Django LoginView.get_success_url() method - Force redirect to /paperless/ when next parameter is empty or '/' - Add comprehensive URL configuration for reverse proxy - Set proper static/media URLs for subpath deployment - Add USE_X_FORWARDED_HOST and USE_X_FORWARDED_PORT settings This should definitively fix the redirect issue by intercepting Django's internal redirect logic and ensuring users stay within Paperless scope.
2025-10-05 21:57:13 +02:00
parent da66bd356e
commit 004fcb23ae
1 changed files with 36 additions and 1 deletions
--- a/paperless/paperless_custom_settings.py
+++ b/paperless/paperless_custom_settings.py
@@ -24,4 +24,39 @@ LOGOUT_REDIRECT_URL = os.getenv('PAPERLESS_LOGOUT_REDIRECT_URL', '/paperless/')
 LOGIN_URL = '/paperless/accounts/login/'

 # Ensure Force Script Name for proper URL handling behind proxy
-FORCE_SCRIPT_NAME = os.getenv('PAPERLESS_FORCE_SCRIPT_NAME', '/paperless')
+FORCE_SCRIPT_NAME = os.getenv('PAPERLESS_FORCE_SCRIPT_NAME', '/paperless')
+
+# Additional URL configuration for proper reverse proxy support
+USE_X_FORWARDED_HOST = True
+USE_X_FORWARDED_PORT = True
+
+# Static and media URL configuration for subpath
+STATIC_URL = '/paperless/static/'
+MEDIA_URL = '/paperless/media/'
+
+# Fix any hardcoded redirects in Paperless
+ACCOUNT_LOGOUT_REDIRECT_URL = '/paperless/'
+
+# Force Django to always use the paperless prefix for authentication URLs
+LOGIN_URL = '/paperless/accounts/login/'
+
+# Override Django's redirect behavior for authentication  
+# This ensures that after login, if no next parameter is provided or if next='/', 
+# it redirects to /paperless/ instead
+def fix_login_redirect(original_redirect_url):
+    """Custom redirect logic to keep users within Paperless scope"""
+    if not original_redirect_url or original_redirect_url == '/':
+        return '/paperless/'
+    elif original_redirect_url.startswith('/') and not original_redirect_url.startswith('/paperless/'):
+        return '/paperless/'
+    return original_redirect_url
+
+# Monkey patch Django's login view to fix redirect behavior
+import django.contrib.auth.views
+original_get_success_url = django.contrib.auth.views.LoginView.get_success_url
+
+def patched_get_success_url(self):
+    url = original_get_success_url(self)
+    return fix_login_redirect(url)
+
+django.contrib.auth.views.LoginView.get_success_url = patched_get_success_url