From 406332397001ade043f6e46065d40167e5115836 Mon Sep 17 00:00:00 2001
From: David Christofas <dchristofas@owncloud.com>
Date: Thu, 23 Sep 2021 19:28:47 +0200
Subject: [PATCH] run the public share auth middleware after the create home
 middleware

The x-access-token for public shares is scoped for only the share. That means create home would fail because the token is not valid.
---
 proxy/pkg/command/server.go | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/proxy/pkg/command/server.go b/proxy/pkg/command/server.go
index cd4a7ed14de..8b434110349 100644
--- a/proxy/pkg/command/server.go
+++ b/proxy/pkg/command/server.go
@@ -222,10 +222,6 @@ func loadMiddlewares(ctx context.Context, logger log.Logger, cfg *config.Config)
 			middleware.OIDCIss(cfg.OIDC.Issuer),
 			middleware.CredentialsByUserAgent(cfg.Reva.Middleware.Auth.CredentialsByUserAgent),
 		),
-		middleware.PublicShareAuth(
-			middleware.Logger(logger),
-			middleware.RevaGatewayClient(revaClient),
-		),
 		middleware.SignedURLAuth(
 			middleware.Logger(logger),
 			middleware.PreSignedURLConfig(cfg.PreSignedURL),
@@ -253,6 +249,10 @@ func loadMiddlewares(ctx context.Context, logger log.Logger, cfg *config.Config)
 			middleware.TokenManagerConfig(cfg.TokenManager),
 			middleware.RevaGatewayClient(revaClient),
 		),
+		middleware.PublicShareAuth(
+			middleware.Logger(logger),
+			middleware.RevaGatewayClient(revaClient),
+		),
 	)
 }