From 4dac4efaecf7a700e21bc6564022ec85267e78d7 Mon Sep 17 00:00:00 2001
From: David Christofas <dchristofas@owncloud.com>
Date: Thu, 23 Sep 2021 19:28:47 +0200
Subject: [PATCH] run the public share auth middleware after the create home
 middleware

The x-access-token for public shares is scoped for only the share. That means create home would fail because the token is not valid.
---
 proxy/pkg/command/server.go | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/proxy/pkg/command/server.go b/proxy/pkg/command/server.go
index 692ded2dc31..638c746afe3 100644
--- a/proxy/pkg/command/server.go
+++ b/proxy/pkg/command/server.go
@@ -218,10 +218,6 @@ func loadMiddlewares(ctx context.Context, logger log.Logger, cfg *config.Config)
 			middleware.OIDCIss(cfg.OIDC.Issuer),
 			middleware.CredentialsByUserAgent(cfg.Reva.Middleware.Auth.CredentialsByUserAgent),
 		),
-		middleware.PublicShareAuth(
-			middleware.Logger(logger),
-			middleware.RevaGatewayClient(revaClient),
-		),
 		middleware.SignedURLAuth(
 			middleware.Logger(logger),
 			middleware.PreSignedURLConfig(cfg.PreSignedURL),
@@ -249,6 +245,10 @@ func loadMiddlewares(ctx context.Context, logger log.Logger, cfg *config.Config)
 			middleware.TokenManagerConfig(cfg.TokenManager),
 			middleware.RevaGatewayClient(revaClient),
 		),
+		middleware.PublicShareAuth(
+			middleware.Logger(logger),
+			middleware.RevaGatewayClient(revaClient),
+		),
 	)
 }