[master] Port Same-Site Cookies to master

Fixes https://github.com/nextcloud/server/issues/50
author: Lukas Reschke <lukas@statuscode.ch> 2016-07-20 17:37:30 +0200
committer: Lukas Reschke <lukas@statuscode.ch> 2016-07-20 18:37:57 +0200
commit: a299fa38a9172f16e4bc48d4bd4f9807cec2f737 (patch)
tree: abd17d7cc5eabc8acf7cb5b1acb30a12abe1581e /lib/public/Util.php
parent: 7cdf6402ff9a0e07866ca8bcfcffd0e0897b646a (diff)
download: nextcloud-server-a299fa38a9172f16e4bc48d4bd4f9807cec2f737.tar.gz
nextcloud-server-a299fa38a9172f16e4bc48d4bd4f9807cec2f737.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/lib/public/Util.php b/lib/public/Util.php
index 687f4e78f69..9422dbac66a 100644
--- a/lib/public/Util.php
+++ b/lib/public/Util.php
@@ -513,6 +513,11 @@ class Util {
 	 * @deprecated 9.0.0 Use annotations based on the app framework.
 	 */
 	public static function callCheck() {
+		if(!\OC::$server->getRequest()->passesStrictCookieCheck()) {
+			header('Location: '.\OC::$WEBROOT);
+			exit();
+		}
+
 		if (!(\OC::$server->getRequest()->passesCSRFCheck())) {
 			exit();
 		}
author	Lukas Reschke <lukas@statuscode.ch>	2016-07-20 17:37:30 +0200
committer	Lukas Reschke <lukas@statuscode.ch>	2016-07-20 18:37:57 +0200
commit	a299fa38a9172f16e4bc48d4bd4f9807cec2f737 (patch)
tree	abd17d7cc5eabc8acf7cb5b1acb30a12abe1581e /lib/public/Util.php
parent	7cdf6402ff9a0e07866ca8bcfcffd0e0897b646a (diff)
download	nextcloud-server-a299fa38a9172f16e4bc48d4bd4f9807cec2f737.tar.gz nextcloud-server-a299fa38a9172f16e4bc48d4bd4f9807cec2f737.zip