Remove RAWURI values from URL auth

Currently the URL auth system transmits the RAWURI value if available as "mount"-parameter. This includes query strings. However it does not include POST parameters (therefore is inconsistent).

This should be deprecated and only the resource the user connected to should be included.

It must be discussed if it should transmit the original resource name (before <resource> processing) if they differ.