fix(auth): Allow 2FA challenges for Ephemeral sessions

Signed-off-by: Joas Schilling <[email protected]>

Author: nickvergessen

lib/private/AppFramework/Middleware/FlowV2EphemeralSessionsMiddleware.php

@@ -9,6 +9,7 @@
 
 use OC\AppFramework\Utility\ControllerMethodReflector;
 use OC\Core\Controller\ClientFlowLoginV2Controller;
+use OC\Core\Controller\TwoFactorChallengeController;
 use OCP\AppFramework\Middleware;
 use OCP\ISession;
 use OCP\IUserSession;
@@ -42,6 +43,10 @@ public function beforeController($controller, $methodName) {
 			return;
 		}
 
+		if ($controller instanceof TwoFactorChallengeController) {
+			return;
+		}
+
 		if ($this->reflector->hasAnnotation('PublicPage')) {
 			return;
 		}