Home Explore Help
Sign In
RISCI_ATOM
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Files Issues 23 Wiki
Browse Source

Extend Same Site cookie user_saml exemption rule

The current check does not trigger if $request->getRequestUri() does not return index.php as a prefix
(on my config this was occuring using nginx to serve Nextcloud)

Signed-off-by: Vincent Vanackere <vincent.vanackere@trustelem.com>
Vincent Vanackere 7 years ago
parent
a5a872c9d7
commit
be36513819
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      lib/base.php

+ 1 - 1
lib/base.php
View File 

@@ -528,7 +528,7 @@ class OC {
 
 			//
 
 			// Questions about this code? Ask Lukas ;-)
 
 			$currentUrl = substr(explode('?',$request->getRequestUri(), 2)[0], strlen(\OC::$WEBROOT));
 
-			if($currentUrl === '/index.php/apps/user_saml/saml/acs') {
 
+			if($currentUrl === '/index.php/apps/user_saml/saml/acs' || $currentUrl === '/apps/user_saml/saml/acs') {
 
 				return;
 
 			}
 
 			// For the "index.php" endpoint only a lax cookie is required.