Merge pull request #28489 from nextcloud/backport/28413/stable22

[stable22] Emit an error log when the app token login name does not match
5 years ago · 67cbb0318d
parent 7879484950 461e9079b9
commit 67cbb0318d
1 changed files with 6 additions and 1 deletions
--- a/lib/private/User/Session.php
+++ b/lib/private/User/Session.php
@ -788,9 +788,14 @@ class Session implements IUserSession, Emitter {

 		// Check if login names match
 		if (!is_null($user) && $dbToken->getLoginName() !== $user) {
-			// TODO: this makes it imposssible to use different login names on browser and client
+			// TODO: this makes it impossible to use different login names on browser and client
 			// e.g. login by e-mail 'user@example.com' on browser for generating the token will not
 			//      allow to use the client token with the login name 'user'.
+			$this->logger->error('App token login name does not match', [
+				'tokenLoginName' => $dbToken->getLoginName(),
+				'sessionLoginName' => $user,
+			]);
+
 			return false;
 		}