nextcloud/apps/dav/tests
Micke Nordin db96073459 fix(auth): confine OCM access token to the masked share endpoint
Gate the temporary-token bearer auth behind an allowOcmAccessToken flag
that only the public, share-masked webdav endpoints set, and drop the
BearerAuth backend from the CalDAV/CardDAV entrypoints. The token is now
honored only on /public.php/webdav, where per-share masking applies.

Assisted-by: ClaudeCode:claude-fable-5

Signed-off-by: Micke Nordin <kano@sunet.se>
2026-07-07 13:56:32 +02:00
..
benchmarks chore: Add SPDX header 2024-05-28 14:41:28 +02:00
integration refactor: Apply rector changes 2026-03-15 14:53:03 +00:00
testsuits Revert "fix(dav): Always respond custom error page on exceptions" 2024-11-22 11:55:25 +01:00
unit fix(auth): confine OCM access token to the masked share endpoint 2026-07-07 13:56:32 +02:00