Requests from UI to backend "/applications" endpoint are ignoring session cookies

[dpavanelli]

Hi guys, in order to give you more context about this bug, I guess it's necessary to explain a little bit about my infrastructure.

My application (that contains the Springboot Admin project) is running behind a reverse proxy (traefik) under the path /service/admin (properly configured in admin server public-url). Whenever an user access it, the proxy intercepts the requests and look for a session cookie. If the cookie doesn't exists, or is invalid, the proxy redirects the user request to our authentication service (a keycloak server)

After a successful login, a new session cookie is created (and associated with our server domain) and that authenticate service redirects again to our reverse proxy with the original request and a new cookie. The reverse proxy then checks the cookie, and finally allow the access to the original request url.

My problem is that, after loading all static content from Springboot Admin assets, any ajax calls from UI to admin server endpoint (/application) are ignoring the session cookie associated with the public-url , resulting in a 401 (unauthorized) response.