nextcloud-server-mirror/lib/private/Log/ExceptionSerializer.php at 7d02d98d9ebff664322dcf3f723db35fdebbed2d

mirror of https://github.com/nextcloud/server.git synced 2026-03-04 18:28:08 +01:00

Files

Max 95a674e238 fix: treat text app session parameters as sensitive values

* `PublicSessionController create` receives a share token.
* The others receive the parameters for a text session:
  `document_id`, `session_id`, `session_token`.
  Even though these are relatively short lived
  they could be used to retrieve content from the document when leaked.

Signed-off-by: Max <max@nextcloud.com>

2023-03-01 13:03:47 +01:00

8.0 KiB

Raw Blame History

View Raw

8.0 KiB Raw Blame History

8.0 KiB

Raw Blame History