nextcloud-server/core
Christoph Wurst f22101d421
Fix login loop if login CSRF fails and user is not logged in
If CSRF fails but the user is logged in that they probably logged in in
another tab. This is fine. We can just redirect.
If CSRF fails and the user is also not logged in then something is
fishy. E.g. because Nextcloud contantly regenrates the session and the
CSRF token and the user is stuck in an endless login loop.

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
2023-01-18 09:39:17 +01:00
..
ajax
BackgroundJobs
Command Fix API breakage by using a new method instead 2023-01-12 17:18:59 +01:00
Controller Fix login loop if login CSRF fails and user is not logged in 2023-01-18 09:39:17 +01:00
css Fix failed revert for #35071 2023-01-17 14:21:11 +01:00
Data
Db
doc
Events
Exception
fonts
img fix(ui): Fix and optimize more SVGs 2023-01-05 11:01:14 +01:00
js Focus trap contacts menu with NcHeaderMenu port 2023-01-13 23:19:28 +00:00
l10n Fix(l10n): 🔠 Update translations from Transifex 2023-01-18 02:25:23 +00:00
Listener Only check unsupported browsers on user rendering 2022-10-28 12:23:02 +02:00
Middleware
Migrations PublickKeyTokenProvider: Fix password update routine with password hash 2023-01-04 08:30:53 +01:00
Notification update notifications for one-click instances 2022-10-24 18:28:00 +02:00
Service
skeleton
src Focus trap contacts menu with NcHeaderMenu port 2023-01-13 23:19:28 +00:00
templates Revert "Add alt to the logo, adapt css for logo" 2023-01-17 14:19:23 +01:00
vendor Remove jstz usage from server 2023-01-04 17:40:40 +00:00
.l10nignore
Application.php Only check unsupported browsers on user rendering 2022-10-28 12:23:02 +02:00
register_command.php move share owner repair to occ command 2022-11-08 17:13:33 +01:00
routes.php Use proper error pages instead of always redirecting 2022-10-21 15:12:21 +02:00
shipped.json
strings.php