Merge pull request #24550 from nextcloud/enh/fix/new_session_id_if_decrypt_fails

Generate a new session id if the decrypting the session data fails
This commit is contained in:
Morris Jobke 2020-12-04 12:52:59 +01:00 committed by GitHub
commit 0d7819eb6c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions

View File

@ -87,6 +87,7 @@ class CryptoSessionData implements \ArrayAccess, ISession {
);
} catch (\Exception $e) {
$this->sessionValues = [];
$this->regenerateId(true, false);
}
}