[bug] redirects bypass iframe mount when behind hero_router #19

New issue

Closed

opened 2026-05-04 14:00:55 +00:00 by zaelgohary · 0 comments

zaelgohary commented 2026-05-04 14:00:55 +00:00

Member

Copy link

state.base_path is read once at startup from BASE_PATH env var. When the env var is unset (current deploy), every Redirect::to becomes absolute (e.g. /c/threefold) and bypasses the iframe mount prefix, returning 503 from hero_router.

Found via Playwright network audit.

`state.base_path` is read once at startup from `BASE_PATH` env var. When the env var is unset (current deploy), every `Redirect::to` becomes absolute (e.g. `/c/threefold`) and bypasses the iframe mount prefix, returning 503 from hero_router. Found via Playwright network audit.

zaelgohary self-assigned this 2026-05-04 14:00:55 +00:00

zaelgohary referenced this issue from a pull request that will close it, 2026-05-04 14:01:29 +00:00

fix(ui): honor X-Forwarded-Prefix in redirects and embed hero-bootstrap-bridge.css #18

zaelgohary closed this issue 2026-05-04 14:04:33 +00:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

development

main

v0.5.0-rc1

v0.1.3-rc4

v0.1.3-rc3

v0.1.3-rc2

development_mik_biz_from_ci

v0.1.3-rc1

v0.1.2

v0.1.1

v0.1.0

v0.0.1-rc1

Labels

Clear labels   

prio_critical

  

prio_low

  

type_bug

  

type_contact

  

type_issue

  

type_lead

  

type_question

  

type_story

  

type_task

No labels

prio_critical

prio_low

type_bug

type_contact

type_issue

type_lead

type_question

type_story

type_task

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

zaelgohary

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

lhumina_code/hero_biz#19

No description provided.