fix: generate csrf tokens if two factor challenge is ongoingfix/csrf-token-ignore-twofactor

Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
author: Richard Steinmetz <richard@steinmetz.cloud> 2025-06-17 21:41:09 +0200
committer: Richard Steinmetz <richard@steinmetz.cloud> 2025-06-17 21:41:09 +0200
commit: 1d7fc284e5863bb8f6c8aafbc3b20807bfb5e80c (patch)
tree: 8a7bded76e56fb4a240368558c85bbac867348fa
parent: 768898e28fe0ede767bc76a7eea36361533ad9cc (diff)
download: nextcloud-server-fix/csrf-token-ignore-twofactor.tar.gz
nextcloud-server-fix/csrf-token-ignore-twofactor.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/core/Controller/CSRFTokenController.php b/core/Controller/CSRFTokenController.php
index 4fdd669e144..edf7c26e94c 100644
--- a/core/Controller/CSRFTokenController.php
+++ b/core/Controller/CSRFTokenController.php
@@ -34,6 +34,8 @@ class CSRFTokenController extends Controller {
 	 *
 	 * 200: CSRF token returned
 	 * 403: Strict cookie check failed
+	 *
+	 * @NoTwoFactorRequired
 	 */
 	#[PublicPage]
 	#[NoCSRFRequired]
author	Richard Steinmetz <richard@steinmetz.cloud>	2025-06-17 21:41:09 +0200
committer	Richard Steinmetz <richard@steinmetz.cloud>	2025-06-17 21:41:09 +0200
commit	1d7fc284e5863bb8f6c8aafbc3b20807bfb5e80c (patch)
tree	8a7bded76e56fb4a240368558c85bbac867348fa
parent	768898e28fe0ede767bc76a7eea36361533ad9cc (diff)
download	nextcloud-server-fix/csrf-token-ignore-twofactor.tar.gz nextcloud-server-fix/csrf-token-ignore-twofactor.zip