archive
/
nextcloud
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Releases Wiki Activity

fix(dav): ajax request check on public remote endpoints

Browse Source 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
pull/44895/head
John Molakvoæ 4 months ago committed by Daniel Kesselberg
parent bf5792a841
commit 4ef047f362
No known key found for this signature in database
GPG Key ID: 36E3664E099D0614
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
apps/dav/appinfo/v1/publicwebdav.php
Unescape Escape View File

@ -71,7 +71,7 @@ $linkCheckPlugin = new \OCA\DAV\Files\Sharing\PublicLinkCheckPlugin();
$filesDropPlugin = new \OCA\DAV\Files\Sharing\FilesDropPlugin();
$server = $serverFactory->createServer($baseuri, $requestUri, $authPlugin, function (\Sabre\DAV\Server $server) use ($authBackend, $linkCheckPlugin, $filesDropPlugin) {
$isAjax = (isset($_SERVER['HTTP_X_REQUESTED_WITH']) && $_SERVER['HTTP_X_REQUESTED_WITH'] === 'XMLHttpRequest');
$isAjax = in_array('XMLHttpRequest', explode(',', $_SERVER['HTTP_X_REQUESTED_WITH'] ?? ''));
/** @var \OCA\FederatedFileSharing\FederatedShareProvider $shareProvider */
$federatedShareProvider = \OC::$server->query(\OCA\FederatedFileSharing\FederatedShareProvider::class);
if ($federatedShareProvider->isOutgoingServer2serverShareEnabled() === false && !$isAjax) {

Write Preview
Loading…
Cancel
Save