cbSecurity defaultAuthenticationAction is redirecting to base domain without port

http://127.0.0.1:11369/api/whoami
which is a secured event is suppose to redirect to
http://127.0.0.1:11369/echo/onAuthentitionFailure
But instead is redirecting to the base domain without the port number
http://127.0.0.1/echo/onAuthenticationFailure