diff options
| author | Julius Härtl <jus@bitgrid.net> | 2024-06-27 20:24:35 +0200 |
|---|---|---|
| committer | Julius Härtl <jus@bitgrid.net> | 2024-06-28 14:42:36 +0200 |
| commit | 4d6b4b71c7af6aa00cdc9291e64491486d74f41e (patch) | |
| tree | 76363ca1b083a7241406a235a57acac577be5472 /apps/dav/lib/Connector | |
| parent | 8ec53608b0b1f6fad1569933bc05b723bd2bd2fc (diff) | |
| download | nextcloud-server-4d6b4b71c7af6aa00cdc9291e64491486d74f41e.tar.gz nextcloud-server-4d6b4b71c7af6aa00cdc9291e64491486d74f41e.zip | |
fix: Authorization header can be an empty string
Signed-off-by: Julius Härtl <jus@bitgrid.net>
Diffstat (limited to 'apps/dav/lib/Connector')
| -rw-r--r-- | apps/dav/lib/Connector/Sabre/Auth.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/apps/dav/lib/Connector/Sabre/Auth.php b/apps/dav/lib/Connector/Sabre/Auth.php index ee84da49d7d..9b67d960107 100644 --- a/apps/dav/lib/Connector/Sabre/Auth.php +++ b/apps/dav/lib/Connector/Sabre/Auth.php @@ -185,7 +185,7 @@ class Auth extends AbstractBasic { //Fix for broken webdav clients ($this->userSession->isLoggedIn() && is_null($this->session->get(self::DAV_AUTHENTICATED))) || //Well behaved clients that only send the cookie are allowed - ($this->userSession->isLoggedIn() && $this->session->get(self::DAV_AUTHENTICATED) === $this->userSession->getUser()->getUID() && $request->getHeader('Authorization') === null) || + ($this->userSession->isLoggedIn() && $this->session->get(self::DAV_AUTHENTICATED) === $this->userSession->getUser()->getUID() && empty($request->getHeader('Authorization'))) || \OC_User::handleApacheAuth() ) { $user = $this->userSession->getUser()->getUID(); |