Redirect loop with transparent auth cookie