From 4e0d098afa82cb390b8b8f32571ea172d5645b1a Mon Sep 17 00:00:00 2001 From: Paul Mehrer Date: Wed, 10 Jan 2024 22:34:25 +0100 Subject: [PATCH] tweak(TB Expressive) skip mfa for authorization baerer token requests --- tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php | 2 ++ 1 file changed, 2 insertions(+) diff --git a/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php b/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php index fe1c3032984..19b251f7180 100644 --- a/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php +++ b/tine20/Tinebase/Expressive/Middleware/CheckRouteAuth.php @@ -68,6 +68,8 @@ public function process(ServerRequestInterface $request, RequestHandlerInterface try { Admin_Controller_JWTAccessRoutes::doRouteAuth($routeHandler->getName(), $token); $user = Tinebase_Core::getUser(); + $unauthorized = false; + break 2; } catch (Tinebase_Exception_AccessDenied $tead) { if (Tinebase_Core::isLogLevel(Zend_Log::INFO)) Tinebase_Core::getLogger()->info(__METHOD__ . '::' . __LINE__ . ' returning with HTTP 401 unauthorized: ' . $tead->getMessage());