Rev 1116 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 1116 | Rev 1300 | ||
|---|---|---|---|
| Line 95... | Line 95... | ||
| 95 | * @return OIDplusAuthContentStoreSession|null |
95 | * @return OIDplusAuthContentStoreSession|null |
| 96 | */ |
96 | */ |
| 97 | public static function getActiveProvider()/*: ?OIDplusAuthContentStore*/ { |
97 | public static function getActiveProvider()/*: ?OIDplusAuthContentStore*/ { |
| 98 | static $contentProvider = null; |
98 | static $contentProvider = null; |
| 99 | 99 | ||
| - | 100 | $rel_url = substr($_SERVER['REQUEST_URI'], strlen(OIDplus::webpath(null, OIDplus::PATH_RELATIVE_TO_ROOT))); |
|
| - | 101 | if (str_starts_with($rel_url, 'rest/')) { // <== TODO: Find a way how to move this into the plugin, since REST does not belong to the core. (Maybe some kind of "stateless mode" that is enabled by the REST plugin) |
|
| - | 102 | // For REST, we must only allow JWT from Bearer and nothing else! So disable cookies if we are accessing the REST plugin |
|
| - | 103 | return null; |
|
| - | 104 | } |
|
| - | 105 | ||
| 100 | if (!$contentProvider) { |
106 | if (!$contentProvider) { |
| 101 | if (self::getSessionHandler()->isActive()) { |
107 | if (self::getSessionHandler()->isActive()) { |
| 102 | $contentProvider = new OIDplusAuthContentStoreSession(); |
108 | $contentProvider = new OIDplusAuthContentStoreSession(); |
| 103 | } |
109 | } |
| 104 | } |
110 | } |