Add workaround for stable9 non-stable entry URL

appinfo/app.php

@@ -50,19 +50,17 @@ try {
 	return;
 }
 
-// Redirect all requests to the login page to the SAML login
 // Since with Nextcloud 9 we don't have an unique entry point this is a little
-// bit hacky and won't necessarily detect all situations.
-$currentUrl = substr(explode('?',$request->getRequestUri(), 2)[0], strlen(\OC::$WEBROOT));
-if(($currentUrl === '/index.php') && !OC_User::isLoggedIn()) {
-	$csrfToken = \OC::$server->getCsrfTokenManager()->getToken();
-	header('Location: '.$urlGenerator->linkToRouteAbsolute('user_saml.SAML.login') .'?requesttoken='. urlencode($csrfToken->getEncryptedValue()));
-	exit();
+// bit hacky and won't necessarily detect all situations. So we inject some magic
+// Javascript that does the work for us.
+if(!OC_User::isLoggedIn()) {
+	\OCP\Util::addHeader('script', ['src' => $urlGenerator->linkTo('user_saml', 'js/preauth.js')], '');
 }
 
 // If a request to OCS or remote.php is sent by the official desktop clients it can
 // be intercepted as it supports SAML. All other clients don't yet and thus we
 // require the usage of application specific passwords there.
+$currentUrl = substr(explode('?',$request->getRequestUri(), 2)[0], strlen(\OC::$WEBROOT));
 if(substr($currentUrl, 0, 12) === '/remote.php/' || substr($currentUrl, 0, 5) === '/ocs/') {
 	if(!OC_User::isLoggedIn() && $request->isUserAgent([\OC\AppFramework\Http\Request::USER_AGENT_OWNCLOUD_DESKTOP])) {
 		$csrfToken = \OC::$server->getCsrfTokenManager()->getToken();

js/preauth.js

@@ -0,0 +1,4 @@
+if(typeof OC.Login !== "undefined") {
+	// Redirect to login page
+	window.location = OC.generateUrl('/apps/user_saml/saml/login')+'?requesttoken='+encodeURIComponent(OC.requestToken);
+}