breakfix: CHANGE_MEΒ #432
Description
Describe the issue
I have 2 sub domains configured to use Basic Auth. abc.test.com and def.abc.test.com. Both have same cookies and when it is trying to login for def.abc.test.com/auth/login, it automatically redirects to abc.test.com/auth/login. How will we separate them ?
Version Information
Provide output of caddy list-modules --versions | grep -E "(auth|security)" below:
# caddy list-modules --versions | grep -E "(auth|security)"
http.authentication.hashes.bcrypt v2.10.2
http.authentication.providers.http_basic v2.10.2
http.handlers.authentication v2.10.2
tls.client_auth.verifier.leaf v2.10.2
http.authentication.providers.authorizer v1.1.31
http.handlers.authenticator v1.1.31
security v1.1.31
Expected behavior
Both subdomains should have separate cookie name, As cookie name isnt a parameter which we can change, it will cause issues. We need to derive Cookie name