OLS web admin console login issue using alternative web admin port

[tpt]

OpenLiteSpeed (1.9.0): Good luck logging in to the web admin console if you have exposed it to the world on a port other than 7080:

docker run --rm -it --name test -p 8080:8080 -p 7090:7080 litespeedtech/openlitespeed@sha256:87054df767ea110fd62333e57812252d4359f4515725f6fb18853f57026e71ba

docker exec -it test sh -c /usr/local/lsws/admin/misc/admpass.sh

Once I disable port validation rule in CAuthorizer I can successfully login from any custom port.

--- a/usr/local/lsws/admin/html.open/lib/LSWebAdmin/Auth/CAuthorizer.php_OLD
+++ b/usr/local/lsws/admin/html.open/lib/LSWebAdmin/Auth/CAuthorizer.php
@@ -161,7 +161,7 @@ class CAuthorizer

         $requestPort = $this->getRequestPort();
         if ($requestPort !== null && isset($parts['port']) && (int) $parts['port'] !== $requestPort) {
-            return false;
+            //return false;
         }

         return true;

 

[Cold-Egg]

Forwarded to the dev team, we will enhance this part, thanks for the report.