Merge pull request #24550 from nextcloud/enh/fix/new_session_id_if_decrypt_fails
Generate a new session id if the decrypting the session data fails
This commit is contained in:
commit
0d7819eb6c
|
@ -87,6 +87,7 @@ class CryptoSessionData implements \ArrayAccess, ISession {
|
||||||
);
|
);
|
||||||
} catch (\Exception $e) {
|
} catch (\Exception $e) {
|
||||||
$this->sessionValues = [];
|
$this->sessionValues = [];
|
||||||
|
$this->regenerateId(true, false);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue