mirror of
https://github.com/nextcloud/server.git
synced 2026-03-12 21:52:19 -04:00
52 lines
1.4 KiB
PHP
52 lines
1.4 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
/**
|
|
* SPDX-FileCopyrightText: 2025 Nextcloud GmbH and Nextcloud contributors
|
|
* SPDX-License-Identifier: AGPL-3.0-only
|
|
*/
|
|
namespace OC\AppFramework\Middleware;
|
|
|
|
use OC\AppFramework\Utility\ControllerMethodReflector;
|
|
use OC\Core\Controller\ClientFlowLoginV2Controller;
|
|
use OC\Core\Controller\TwoFactorChallengeController;
|
|
use OCP\AppFramework\Middleware;
|
|
use OCP\Authentication\TwoFactorAuth\ALoginSetupController;
|
|
use OCP\ISession;
|
|
use OCP\IUserSession;
|
|
|
|
// Will close the session if the user session is ephemeral.
|
|
// Happens when the user logs in via the login flow v2.
|
|
class FlowV2EphemeralSessionsMiddleware extends Middleware {
|
|
public function __construct(
|
|
private ISession $session,
|
|
private IUserSession $userSession,
|
|
private ControllerMethodReflector $reflector,
|
|
) {
|
|
}
|
|
|
|
public function beforeController($controller, $methodName) {
|
|
if (!$this->session->get(ClientFlowLoginV2Controller::EPHEMERAL_NAME)) {
|
|
return;
|
|
}
|
|
|
|
if (
|
|
$controller instanceof ClientFlowLoginV2Controller &&
|
|
($methodName === 'grantPage' || $methodName === 'generateAppPassword')
|
|
) {
|
|
return;
|
|
}
|
|
|
|
if ($controller instanceof TwoFactorChallengeController
|
|
|| $controller instanceof ALoginSetupController) {
|
|
return;
|
|
}
|
|
|
|
if ($this->reflector->hasAnnotation('PublicPage')) {
|
|
return;
|
|
}
|
|
|
|
$this->userSession->logout();
|
|
$this->session->close();
|
|
}
|
|
}
|