aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorprovokateurin <kate@provokateurin.de>2025-01-07 15:41:19 +0100
committerbackportbot[bot] <backportbot[bot]@users.noreply.github.com>2025-01-09 11:06:17 +0000
commitd64c72ba2f5b3dffc6a4c26f168701f5f7c914d3 (patch)
treed6c129dbef9232b4a45b2f94ff0fa07546286d59
parent353866fa4a94dd88c87c5f823a8e040c4346e654 (diff)
downloadnextcloud-server-backport/50070/stable29.tar.gz
nextcloud-server-backport/50070/stable29.zip
docs(HTTP): Add proper docs for CORS attributebackport/50070/stable29
Signed-off-by: provokateurin <kate@provokateurin.de>
-rw-r--r--lib/public/AppFramework/Http/Attribute/CORS.php4
1 files changed, 3 insertions, 1 deletions
diff --git a/lib/public/AppFramework/Http/Attribute/CORS.php b/lib/public/AppFramework/Http/Attribute/CORS.php
index 2d87c91ccab..40098903f72 100644
--- a/lib/public/AppFramework/Http/Attribute/CORS.php
+++ b/lib/public/AppFramework/Http/Attribute/CORS.php
@@ -28,7 +28,9 @@ namespace OCP\AppFramework\Http\Attribute;
use Attribute;
/**
- * Attribute for controller methods that can also be accessed by not logged-in user
+ * Attribute for controller methods that can also be accessed by other websites.
+ * See https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS for an explanation of the functionality and the security implications.
+ * See https://docs.nextcloud.com/server/latest/developer_manual/digging_deeper/rest_apis.html on how to implement it in your controller.
*
* @since 27.0.0
*/