Merge pull request #28413 from nextcloud/fix/app-token-login-name-mis…

…match-logging
nextcloud · Aug 18, 2021 · 7ab39ef · 7ab39ef
2 parents 2c5d308 + a143337
commit 7ab39ef
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/lib/private/User/Session.php b/lib/private/User/Session.php
@@ -788,9 +788,14 @@ private function validateToken($token, $user = null) {
 
 		// Check if login names match
 		if (!is_null($user) && $dbToken->getLoginName() !== $user) {
-			// TODO: this makes it imposssible to use different login names on browser and client
+			// TODO: this makes it impossible to use different login names on browser and client
 			// e.g. login by e-mail '[email protected]' on browser for generating the token will not
 			//      allow to use the client token with the login name 'user'.
+			$this->logger->error('App token login name does not match', [
+				'tokenLoginName' => $dbToken->getLoginName(),
+				'sessionLoginName' => $user,
+			]);
+
 			return false;
 		}