DontSellMe
/
richdocuments
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge pull request #357 from owncloud/advanced-password

Browse Source 
Check session token
pull/1/head
VicDeo 10 years ago
parent 9848db84f5 3934f6a663
commit 3b70fe07f9
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File

3
ajax/sessionController.php
Unescape Escape View File

@ -23,6 +23,9 @@ class SessionController extends Controller{
try { try {
$token = Helper::getArrayValueByKey($args, 'token'); $token = Helper::getArrayValueByKey($args, 'token');
$file = File::getByShareToken($token); $file = File::getByShareToken($token);
if ($file->isPasswordProtected() && !$file->checkPassword('')){
throw new \Exception('Not authorized');
}
$session = Db\Session::start($uid, $file); $session = Db\Session::start($uid, $file);
\OCP\JSON::success($session); \OCP\JSON::success($session);
} catch (\Exception $e){ } catch (\Exception $e){

Write Preview
Loading…
Cancel
Save