fix: use endswith for health probe path matching with root_path

When root_path is set (e.g. /api/lightspeed), the request path
becomes /api/lightspeed/liveness instead of /liveness. The exact
match fails and health probes get rejected with 401. Use endswith()
to match regardless of path prefix.

Signed-off-by: Major Hayden <major@redhat.com>

Author: major

src/authentication/rh_identity.py

@@ -217,7 +217,7 @@ async def __call__(self, request: Request) -> AuthTuple:
         identity_header = request.headers.get("x-rh-identity")
         if not identity_header:
             # Skip auth for health probes when configured
-            if request.url.path in ("/readiness", "/liveness"):
+            if request.url.path.endswith(("/readiness", "/liveness")):
                 if configuration.authentication_configuration.skip_for_health_probes:
                     return NO_AUTH_TUPLE
             logger.warning("Missing x-rh-identity header")