Merge pull request #7698 from nextcloud/fix_7697

Clear login token once apppassword is generated
author: Morris Jobke <hey@morrisjobke.de> 2018-01-04 16:53:57 +0100
committer: GitHub <noreply@github.com> 2018-01-04 16:53:57 +0100
commit: 9c2660e22cb28d46d4b561d52e7e3df398d80fcb (patch)
tree: 89faf30c9ca9cb7770182193de988c1da443f6ac
parent: e7aebcfd6b25813a4559372a101348be53999733 (diff)
parent: 82f03e1314c251fdb50990eb97b974b8b0fc1332 (diff)
download: nextcloud-server-9c2660e22cb28d46d4b561d52e7e3df398d80fcb.tar.gz
nextcloud-server-9c2660e22cb28d46d4b561d52e7e3df398d80fcb.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/core/Controller/ClientFlowLoginController.php b/core/Controller/ClientFlowLoginController.php
index 47bbbce640e..7d6e79d39bc 100644
--- a/core/Controller/ClientFlowLoginController.php
+++ b/core/Controller/ClientFlowLoginController.php
@@ -319,6 +319,9 @@ class ClientFlowLoginController extends Controller {
 			$redirectUri = 'nc://login/server:' . $serverPath . '&user:' . urlencode($loginName) . '&password:' . urlencode($token);
 		}
 
+		// Clear the token from the login here
+		$this->tokenProvider->invalidateToken($sessionId);
+
 		return new Http\RedirectResponse($redirectUri);
 	}
 }
author	Morris Jobke <hey@morrisjobke.de>	2018-01-04 16:53:57 +0100
committer	GitHub <noreply@github.com>	2018-01-04 16:53:57 +0100
commit	9c2660e22cb28d46d4b561d52e7e3df398d80fcb (patch)
tree	89faf30c9ca9cb7770182193de988c1da443f6ac
parent	e7aebcfd6b25813a4559372a101348be53999733 (diff)
parent	82f03e1314c251fdb50990eb97b974b8b0fc1332 (diff)
download	nextcloud-server-9c2660e22cb28d46d4b561d52e7e3df398d80fcb.tar.gz nextcloud-server-9c2660e22cb28d46d4b561d52e7e3df398d80fcb.zip