diff options
| author | provokateurin <kate@provokateurin.de> | 2024-01-21 20:29:54 +0100 |
|---|---|---|
| committer | provokateurin <kate@provokateurin.de> | 2024-02-20 08:04:13 +0100 |
| commit | d95e500e45a3c41af92482e04d16c54c2581e467 (patch) | |
| tree | d01be495c3d9a547a09a256fbac464676f752337 /core/Controller/LoginController.php | |
| parent | 1a3e53462020bf88f9b5831cd76e80c0f3a355f0 (diff) | |
| download | nextcloud-server-d95e500e45a3c41af92482e04d16c54c2581e467.tar.gz nextcloud-server-d95e500e45a3c41af92482e04d16c54c2581e467.zip | |
feat(core): Expose the confirm password endpoint
Signed-off-by: provokateurin <kate@provokateurin.de>
Diffstat (limited to 'core/Controller/LoginController.php')
| -rw-r--r-- | core/Controller/LoginController.php | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/core/Controller/LoginController.php b/core/Controller/LoginController.php index beeb2034fb7..9e5eab4fece 100644 --- a/core/Controller/LoginController.php +++ b/core/Controller/LoginController.php @@ -43,6 +43,7 @@ use OC\User\Session; use OC_App; use OCP\AppFramework\Controller; use OCP\AppFramework\Http; +use OCP\AppFramework\Http\Attribute\NoCSRFRequired; use OCP\AppFramework\Http\Attribute\OpenAPI; use OCP\AppFramework\Http\Attribute\UseSession; use OCP\AppFramework\Http\DataResponse; @@ -61,7 +62,6 @@ use OCP\Notification\IManager; use OCP\Security\Bruteforce\IThrottler; use OCP\Util; -#[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)] class LoginController extends Controller { public const LOGIN_MSG_INVALIDPASSWORD = 'invalidpassword'; public const LOGIN_MSG_USERDISABLED = 'userdisabled'; @@ -126,6 +126,7 @@ class LoginController extends Controller { * @return TemplateResponse|RedirectResponse */ #[UseSession] + #[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)] public function showLoginForm(string $user = null, string $redirect_url = null): Http\Response { if ($this->userSession->isLoggedIn()) { return new RedirectResponse($this->urlGenerator->linkToDefaultPageUrl()); @@ -274,6 +275,7 @@ class LoginController extends Controller { * @return RedirectResponse */ #[UseSession] + #[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)] public function tryLogin(Chain $loginChain, string $user = '', string $password = '', @@ -352,13 +354,22 @@ class LoginController extends Controller { } /** + * Confirm the user password + * * @NoAdminRequired * @BruteForceProtection(action=sudo) * * @license GNU AGPL version 3 or any later version * + * @param string $password The password of the user + * + * @return DataResponse<Http::STATUS_OK, array{lastLogin: int}, array{}>|DataResponse<Http::STATUS_FORBIDDEN, array<empty>, array{}> + * + * 200: Password confirmation succeeded + * 403: Password confirmation failed */ #[UseSession] + #[NoCSRFRequired] public function confirmPassword(string $password): DataResponse { $loginName = $this->userSession->getLoginName(); $loginResult = $this->userManager->checkPassword($loginName, $password); |