Merge pull request #668 from nextcloud/bugfix/468

nextcloud · Aug 29, 2023 · 024ef1a · 024ef1a
2 parents 577075b + 13e29c7
commit 024ef1a
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 0 deletions.
diff --git a/lib/Controller/Id4meController.php b/lib/Controller/Id4meController.php
@@ -295,6 +295,9 @@ public function code(string $state = '', string $code = '', string $scope = '')
 		$this->userSession->completeLogin($user, ['loginName' => $user->getUID(), 'password' => '']);
 		$this->userSession->createSessionToken($this->request, $user->getUID(), $user->getUID());
 
+		// Set last password confirm to the future as we don't have passwords to confirm against with SSO
+		$this->session->set('last-password-confirm', strtotime('+4 year', time()));
+
 		return new RedirectResponse(\OC_Util::getDefaultPageUrl());
 	}
 }
diff --git a/lib/Controller/LoginController.php b/lib/Controller/LoginController.php
@@ -502,6 +502,9 @@ public function code(string $state = '', string $code = '', string $scope = '',
 		$this->userSession->createSessionToken($this->request, $user->getUID(), $user->getUID());
 		$this->userSession->createRememberMeToken($user);
 
+		// Set last password confirm to the future as we don't have passwords to confirm against with SSO
+		$this->session->set('last-password-confirm', strtotime('+4 year', time()));
+
 		// for backchannel logout
 		try {
 			$authToken = $this->authTokenProvider->getToken($this->session->getId());