PR #25400: fix: rewrite absolute /ui/assets/ paths when SERVER_ROOT_PATH is set

• Repository: BerriAI/litellm
• Author: Smeet23
• State: open | merged: False
• Link: https://github.com/BerriAI/litellm/pull/25400

Description (problem / solution / changelog)

What's the problem?

Fixes #25283.

When SERVER_ROOT_PATH is set (e.g. /web-llmgateway/v1), some compiled Next.js chunks emit absolute paths like "/ui/assets/logos/" that browsers resolve without the sub-path prefix, causing 404s for logo assets.

Two additional gaps found during review:

1. Security: SERVER_ROOT_PATH was injected verbatim into served JS/HTML files at startup with no sanitization. A malicious env var value (e.g. with script tags) would be embedded permanently into static assets — stored XSS.
2. Correctness: Only double-quoted paths ("/ui/assets/) were handled; single-quoted variants ('/ui/assets/) used in HTML/CSS were skipped silently.

What's the fix?

• proxy_server.py: Add replacement for absolute "/ui/assets/ paths (double-quoted), and also for '/ui/assets/ (single-quoted)
• utils.py: Add regex validation in get_server_root_path() — raises ValueError at startup if SERVER_ROOT_PATH contains characters outside ^(/[a-zA-Z0-9_-]+)*$, preventing injection into static assets

Tests

7 tests total in test_server_root_path_ui_assets.py:

• test_absolute_ui_asset_paths_rewritten_with_server_root_path
• test_litellm_asset_prefix_still_rewritten
• test_no_replacement_when_no_server_root_path
• test_binary_files_are_skipped
• test_single_quoted_ui_asset_paths_rewritten (new)
• test_invalid_server_root_path_raises_value_error (new — 4 malicious path variants)
• test_valid_server_root_path_accepted (new — 5 valid path variants)

Checklist

• Added tests in tests/test_litellm/
• make test-unit passes locally

Changed files

• litellm/proxy/proxy_server.py (modified, +25/-5)
• litellm/proxy/utils.py (modified, +29/-17)
• tests/test_litellm/proxy/test_server_root_path_ui_assets.py (added, +196/-0)