Skip to content

Commit

Permalink
fixup! docs(AppFramework): Document CSRF check requirements
Browse files Browse the repository at this point in the history
  • Loading branch information
@provokateurin
provokateurin committed May 6, 2024
1 parent a57f9ca commit d8e0d36
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion lib/private/AppFramework/Http/Request.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -454,7 +454,7 @@ protected function decodeContent() {
* Checks if the request passes the CSRF checks.
*
* A request must always pass the strict cookie check, unless it has the OCS-APIRequest set or no session (@see cookieCheckRequired).
* If the OCS-APIRequest is set or a valid CSRF token is sent the request will to pass.
* If the OCS-APIRequest is set or a valid CSRF token is sent the check will succeed.
*/
public function passesCSRFCheck(): bool {
if ($this->csrfTokenManager === null) {
Expand Down

0 comments on commit d8e0d36

Please sign in to comment.