Merge pull request #1031 from nextcloud/2fa-infinite-redirect-loop

prevent infinite redirect loops if the there is no 2fa provider to pass
author: Joas Schilling <coding@schilljs.com> 2016-08-26 16:03:05 +0200
committer: GitHub <noreply@github.com> 2016-08-26 16:03:05 +0200
commit: 89c78bbce48ccd75e42245bf1d92910c50e2648f (patch)
tree: 7362a768fc265e36cc5f97e2459622d399962595 /lib/private/legacy/api.php
parent: c20aef87956ce0cc442d809f417f40d61bcd1485 (diff)
parent: 6af2efb67931863b27d96c74cdff1d2ca2615e52 (diff)
download: nextcloud-server-89c78bbce48ccd75e42245bf1d92910c50e2648f.tar.gz
nextcloud-server-89c78bbce48ccd75e42245bf1d92910c50e2648f.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/private/legacy/api.php b/lib/private/legacy/api.php
index 30083294861..17ee9c5d468 100644
--- a/lib/private/legacy/api.php
+++ b/lib/private/legacy/api.php
@@ -311,7 +311,7 @@ class OC_API {
 		// reuse existing login
 		$loggedIn = \OC::$server->getUserSession()->isLoggedIn();
 		if ($loggedIn === true) {
-			if (\OC::$server->getTwoFactorAuthManager()->needsSecondFactor()) {
+			if (\OC::$server->getTwoFactorAuthManager()->needsSecondFactor(\OC::$server->getUserSession()->getUser())) {
 				// Do not allow access to OCS until the 2FA challenge was solved successfully
 				return false;
 			}
author	Joas Schilling <coding@schilljs.com>	2016-08-26 16:03:05 +0200
committer	GitHub <noreply@github.com>	2016-08-26 16:03:05 +0200
commit	89c78bbce48ccd75e42245bf1d92910c50e2648f (patch)
tree	7362a768fc265e36cc5f97e2459622d399962595 /lib/private/legacy/api.php
parent	c20aef87956ce0cc442d809f417f40d61bcd1485 (diff)
parent	6af2efb67931863b27d96c74cdff1d2ca2615e52 (diff)
download	nextcloud-server-89c78bbce48ccd75e42245bf1d92910c50e2648f.tar.gz nextcloud-server-89c78bbce48ccd75e42245bf1d92910c50e2648f.zip