Merge branch 'pu/pm/TbExpressiveSkipMfaForAuthBearerToken' into '2024…

….11' tweak(TB Expressive) skip mfa for authorization baerer token requests See merge request tine20/tine20!4737
tine-groupware · Jan 10, 2024 · 4086f68 · 4086f68
2 parents eef9d4c + 4e0d098
commit 4086f68
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php b/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php
@@ -68,6 +68,8 @@ public function process(ServerRequestInterface $request, RequestHandlerInterface
                             try {
                                 Admin_Controller_JWTAccessRoutes::doRouteAuth($routeHandler->getName(), $token);
                                 $user = Tinebase_Core::getUser();
+                                $unauthorized = false;
+                                break 2;
                             } catch (Tinebase_Exception_AccessDenied $tead) {
                                 if (Tinebase_Core::isLogLevel(Zend_Log::INFO)) Tinebase_Core::getLogger()->info(__METHOD__ .
                                     '::' . __LINE__ . ' returning with HTTP 401 unauthorized: ' . $tead->getMessage());