Always whitelist the login fallback in the SSO configuration if `public_baseurl` is set.