From 543f23c8ef9dd1165b20acec170b4d8fa5bf2f84 Mon Sep 17 00:00:00 2001
From: Harvey Tindall <hrfee@protonmail.ch>
Date: Tue, 3 Oct 2023 09:44:05 +0100
Subject: [PATCH] userpage: make refresh token work w/ reverse proxy

potentially for #290.
---
 user-auth.go | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/user-auth.go b/user-auth.go
index 40ea057..53c9ae0 100644
--- a/user-auth.go
+++ b/user-auth.go
@@ -1,6 +1,10 @@
 package main
 
-import "github.com/gin-gonic/gin"
+import (
+	"strings"
+
+	"github.com/gin-gonic/gin"
+)
 
 func (app *appContext) userAuth() gin.HandlerFunc {
 	return app.userAuthenticate
@@ -60,7 +64,11 @@ func (app *appContext) getUserTokenLogin(gc *gin.Context) {
 	}
 
 	app.debug.Printf("Token generated for non-admin user \"%s\"", username)
-	gc.SetCookie("user-refresh", refresh, REFRESH_TOKEN_VALIDITY_SEC, "/my", gc.Request.URL.Hostname(), true, true)
+	uri := "/my"
+	if strings.HasPrefix(gc.Request.RequestURI, app.URLBase) {
+		uri = "/accounts/my"
+	}
+	gc.SetCookie("user-refresh", refresh, REFRESH_TOKEN_VALIDITY_SEC, uri, gc.Request.URL.Hostname(), true, true)
 	gc.JSON(200, getTokenDTO{token})
 }