fix: #9032, fix login redirect for sso plugins

public/src/ajaxify.js

@@ -155,16 +155,12 @@ ajaxify = window.ajaxify || {};
 				app.alertError('[[global:please_log_in]]');
 				app.previousUrl = url;
 				window.location.href = config.relative_path + '/login';
-			} else if (status === 302 || status === 308) {
-				if (data.responseJSON && data.responseJSON.external) {
-					window.location.href = data.responseJSON.external;
-				} else if (typeof data.responseJSON === 'string') {
-					ajaxifyTimer = undefined;
-					if (data.responseJSON.startsWith('http://') || data.responseJSON.startsWith('https://')) {
-						window.location.href = data.responseJSON;
-					} else {
-						ajaxify.go(data.responseJSON.slice(1), callback, quiet);
-					}
+			} else if ((status === 302 || status === 308) && typeof data.responseJSON === 'string') {
+				ajaxifyTimer = undefined;
+				if (data.responseJSON.startsWith('http://') || data.responseJSON.startsWith('https://')) {
+					window.location.href = data.responseJSON;
+				} else {
+					ajaxify.go(data.responseJSON.slice(1), callback, quiet);
 				}
 			}
 		} else if (textStatus !== 'abort') {

src/controllers/index.js

@@ -125,12 +125,7 @@ Controllers.login = async function (req, res) {
 	data.allowLocalLogin = hasLoginPrivilege || parseInt(req.query.local, 10) === 1;
 
 	if (!data.allowLocalLogin && !data.allowRegistration && data.alternate_logins && data.authentication.length === 1) {
-		if (res.locals.isAPI) {
-			return helpers.redirect(res, {
-				external: nconf.get('relative_path') + data.authentication[0].url,
-			});
-		}
-		return res.redirect(nconf.get('relative_path') + data.authentication[0].url);
+		return helpers.redirect(res, data.authentication[0].url);
 	}
 
 	if (req.loggedIn) {