From c2beb36bfc090cbcf94d283b99befa82f6193c37 Mon Sep 17 00:00:00 2001 From: Roeland Jago Douma Date: Tue, 20 Nov 2018 09:23:57 +0100 Subject: [PATCH] Bearer tokens are app token Fixes #12498 This means that we set that it is a proper app token once it is validated. This will allow the 2FA middleware to just run the same check. Signed-off-by: Roeland Jago Douma --- lib/private/User/Session.php | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/lib/private/User/Session.php b/lib/private/User/Session.php index 674f38e2401..8d1cfd13a50 100644 --- a/lib/private/User/Session.php +++ b/lib/private/User/Session.php @@ -783,6 +783,10 @@ class Session implements IUserSession, Emitter { if(!$this->validateToken($token)) { return false; } + + // Set the session variable so we know this is an app password + $this->session->set('app_password', $token); + return true; } -- 2.39.5