redirect to the appropriate target after login

When using OAuth2 authorization, we don't keep track of where users are trying to go before login.  We should keep track of this, and on valid login redirect there from the successful redirect in OAuth2.

We don't currently have any session information stored in the notebook server, so a short-lived cookie that holds the information may be the best approach.