Merge pull request #37305 from nextcloud/fix/security/log-failing-strict-cookie-check

fix(security): Log failing strict cookie check
1 year ago · c3a39cbc75
parent c60182065f 0e6fccf9e1
commit c3a39cbc75
1 changed files with 1 additions and 0 deletions
--- a/lib/base.php
+++ b/lib/base.php
@ -565,6 +565,7 @@ class OC {

 			// All other endpoints require the lax and the strict cookie
 			if (!$request->passesStrictCookieCheck()) {
+				logger('core')->warning('Request does not pass strict cookie check');
 				self::sendSameSiteCookies();
 				// Debug mode gets access to the resources without strict cookie
 				// due to the fact that the SabreDAV browser also lives there.