upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-06-08 16:26:59 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 13

Remove CSRF check from code integrity rescan

Browse source 
Did not find a way to get a valid token from SetupCheck

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
This commit is contained in:
Côme Chilliet 2024-01-11 14:57:25 +01:00
parent 8766a90cff
commit 24f8b04908
No known key found for this signature in database
GPG key ID: A3E2F658B28C760A
2 changed files with 1 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
apps/settings/lib/Controller/CheckSetupController.php
View file

@ -234,6 +234,7 @@ class CheckSetupController extends Controller {
}
/**
* @NoCSRFRequired
* @return RedirectResponse
* @AuthorizedAdminSetting(settings=OCA\Settings\Settings\Admin\Overview)
*/

2
apps/settings/lib/SetupChecks/CodeIntegrity.php
View file

@ -53,7 +53,6 @@ class CodeIntegrity implements ISetupCheck {
} elseif ($this->checker->hasPassedCheck()) {
return SetupResult::success($this->l10n->t('No altered files'));
} else {
// FIXME: If setup check can link to settings pages this should link to /settings/integrity/failed and /settings/integrity/rescan?requesttoken=TOKEN
return SetupResult::error(
$this->l10n->t('Some files have not passed the integrity check. {link1} {link2}'),
$this->urlGenerator->linkToDocs('admin-code-integrity'),
@ -68,7 +67,6 @@ class CodeIntegrity implements ISetupCheck {
'type' => 'highlight',
'id' => 'rescanFailedIntegrityCheck',
'name' => 'Rescan…',
//, ['requesttoken' => '']?
'link' => $this->urlGenerator->linkToRoute('settings.CheckSetup.rescanFailedIntegrityCheck'),
],
],