archive
/
nextcloud
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Releases Wiki Activity

fixup! refactor(AppFramework): Improve and document cookie check requirements

Browse Source
fix/appframework/csrf-request-checks
provokateurin 2 weeks ago
parent d8e0d36d81
commit a77ef6057c
No known key found for this signature in database
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
lib/private/AppFramework/Http/Request.php
Unescape Escape View File

@ -487,7 +487,7 @@ class Request implements \ArrayAccess, \Countable, IRequest {
/**
* Whether the cookie checks are required
*
* In case the OCS-APIRequest header is set or the user has no session, we don't to check the cookies because the client is not a browser and thus doesn't need CSRF checks.
* In case the OCS-APIRequest header is set or the user has no session, we don't need to check the cookies because the client is not a browser and thus doesn't need CSRF checks.
*
* @return bool
*/

Write Preview
Loading…
Cancel
Save