all: Ignore language when checking if URL is prefixed by WebSite's url

Otherwise https://example.com/foo would match https://example.com/ but not the language-selector https://example.com/en/

all: Ignore language when checking if URL is prefixed by WebSite's url
Otherwise https://example.com/foo would match https://example.com/ but not the language-selector https://example.com/en/
99066fb2 · Vincent Pelletier · b70c1c62 · 99066fb2 · 99066fb2 · 99066fb2
Commit 99066fb2 authored Sep 23, 2024 by Vincent Pelletier
3 changed files
--- a/bt5/erp5_web/SkinTemplateItem/portal_skins/erp5_web/WebSite_login.zpt
+++ b/bt5/erp5_web/SkinTemplateItem/portal_skins/erp5_web/WebSite_login.zpt
@@ -7,7 +7,7 @@
             came_from python: request.get('came_from') or request.get('field_came_from');
             isAnon here/portal_membership/isAnonymousUser | nothing;
             url_topmost_document python: here.Base_getURLTopmostDocumentValue();
-             came_from_valid python: not came_from or url_topmost_document.isURLAncestorOf(came_from);">
+             came_from_valid python: not came_from or url_topmost_document.getOriginalDocument().isURLAncestorOf(came_from);">
    <tal:block tal:condition="isAnon">
      <tal:block tal:define="dummy python: response.expireCookie('__ac', path='/');
                 url python: '%s/login_form?portal_status_message=%s' % (here.absolute_url(), here.Base_translateString('Login and/or password is incorrect.'));

--- a/product/ERP5/bootstrap/erp5_xhtml_style/SkinTemplateItem/portal_skins/erp5_xhtml_style/Base_cancel.py
+++ b/product/ERP5/bootstrap/erp5_xhtml_style/SkinTemplateItem/portal_skins/erp5_xhtml_style/Base_cancel.py
 topmost_url_document = context.Base_getURLTopmostDocumentValue()
-if not topmost_url_document.isURLAncestorOf(cancel_url):
+if not topmost_url_document.getOriginalDocument().isURLAncestorOf(cancel_url):
  return context.ERP5Site_redirect(topmost_url_document.absolute_url(),
    keep_items={'portal_status_message': 'Redirection to an external site prevented.'},
    **kw)

--- a/product/ERP5/bootstrap/erp5_xhtml_style/SkinTemplateItem/portal_skins/erp5_xhtml_style/logged_in.py
+++ b/product/ERP5/bootstrap/erp5_xhtml_style/SkinTemplateItem/portal_skins/erp5_xhtml_style/logged_in.py
@@ -40,7 +40,7 @@ if REQUEST.get('is_user_account_password_expired_expire_date'):
              hour_minute=1)})})
 topmost_url_document = context.Base_getURLTopmostDocumentValue()
-if not topmost_url_document.isURLAncestorOf(url):
+if not topmost_url_document.getOriginalDocument().isURLAncestorOf(url):
  return topmost_url_document.Base_redirect(
    keep_items={
      'portal_status_message': translateString('Redirection to an external site prevented.'),