After applying the patch for CONF-30221, login redirects can contain a ${originalurl} parameter, instead of the original URL that requires a login.

If you have configured all of the below:

1. allowed anonymous access in global permissions
2. allowed anonymous view in space permissions
3. restricted some content in that space so that anonymous cannot view it.

Then any time a non-logged-in user tries to view the restricted content they will be redirected to a login page normally, but once they are logged in they will be redirected to the site homepage, not their original destination.

Workaround

Once the user has logged in, they should manually navigate back to the page they intended to view.