From 6abb37317f9a5e0dd4744b0c4a221ee04ffc700f Mon Sep 17 00:00:00 2001 From: Julius Härtl Date: Wed, 4 Aug 2021 15:52:10 +0200 Subject: Do not setup a session when not required on WebDAV requests MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit If basic auth is used on WebDAV endpoints, we will not setup a session by default but instead set a test cookie. Clients which handle session cookies properly will send back the cookie then on the second request and a session will be initialized which can be resued for authentication. Signed-off-by: Julius Härtl --- apps/files/lib/Controller/ViewController.php | 1 + 1 file changed, 1 insertion(+) (limited to 'apps/files/lib/Controller/ViewController.php') diff --git a/apps/files/lib/Controller/ViewController.php b/apps/files/lib/Controller/ViewController.php index cfbc9afce2b..1da9814d7e8 100644 --- a/apps/files/lib/Controller/ViewController.php +++ b/apps/files/lib/Controller/ViewController.php @@ -175,6 +175,7 @@ class ViewController extends Controller { /** * @NoCSRFRequired * @NoAdminRequired + * @UseSession * * @param string $dir * @param string $view -- cgit v1.2.3