Merge pull request #28413 from nextcloud/fix/app-token-login-name-mismatch-logging

author: John Molakvoæ <skjnldsv@users.noreply.github.com> 2021-08-18 14:08:12 +0200
committer: GitHub <noreply@github.com> 2021-08-18 14:08:12 +0200
commit: 7ab39effd3d8d1ead9fac5bd475da024826b07c5 (patch)
tree: 1cb149be7b47a2892ac9301339610ab9dce67b3e
parent: 2c5d308b8ecb7855dabe8f2470ccd4c6603c755b (diff)
parent: a14333779170f47fe53a78b2299414a4273d41d0 (diff)
download: nextcloud-server-7ab39effd3d8d1ead9fac5bd475da024826b07c5.tar.gz
nextcloud-server-7ab39effd3d8d1ead9fac5bd475da024826b07c5.zip
1 files changed, 6 insertions, 1 deletions
diff --git a/lib/private/User/Session.php b/lib/private/User/Session.php
index 4ce99512040..fa6f14fd3ec 100644
--- a/lib/private/User/Session.php
+++ b/lib/private/User/Session.php
@@ -788,9 +788,14 @@ class Session implements IUserSession, Emitter {
 
 		// Check if login names match
 		if (!is_null($user) && $dbToken->getLoginName() !== $user) {
-			// TODO: this makes it imposssible to use different login names on browser and client
+			// TODO: this makes it impossible to use different login names on browser and client
 			// e.g. login by e-mail 'user@example.com' on browser for generating the token will not
 			//      allow to use the client token with the login name 'user'.
+			$this->logger->error('App token login name does not match', [
+				'tokenLoginName' => $dbToken->getLoginName(),
+				'sessionLoginName' => $user,
+			]);
+
 			return false;
 		}
author	John Molakvoæ <skjnldsv@users.noreply.github.com>	2021-08-18 14:08:12 +0200
committer	GitHub <noreply@github.com>	2021-08-18 14:08:12 +0200
commit	7ab39effd3d8d1ead9fac5bd475da024826b07c5 (patch)
tree	1cb149be7b47a2892ac9301339610ab9dce67b3e
parent	2c5d308b8ecb7855dabe8f2470ccd4c6603c755b (diff)
parent	a14333779170f47fe53a78b2299414a4273d41d0 (diff)
download	nextcloud-server-7ab39effd3d8d1ead9fac5bd475da024826b07c5.tar.gz nextcloud-server-7ab39effd3d8d1ead9fac5bd475da024826b07c5.zip