From 93b60b1770428579f329c11a7a5856100934b847 Mon Sep 17 00:00:00 2001
From: Willy Kloucek <wkloucek@owncloud.com>
Date: Wed, 16 Jun 2021 18:33:05 +0200
Subject: [PATCH] add changelog

---
 changelog/unreleased/status_php_authentication.md | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 changelog/unreleased/status_php_authentication.md

diff --git a/changelog/unreleased/status_php_authentication.md b/changelog/unreleased/status_php_authentication.md
new file mode 100644
index 00000000000..6919206f5bc
--- /dev/null
+++ b/changelog/unreleased/status_php_authentication.md
@@ -0,0 +1,9 @@
+Bugfix: Remove authentication from /status.php completely
+
+Despite requests without Authentication header being successful, requests with an
+invalid bearer token in the Authentication header were rejected in the proxy with
+an 401 unauthenticated. Now the Authentication header is completely ignored for the
+/status.php route.
+
+https://github.com/owncloud/ocis/pull/2188
+https://github.com/owncloud/client/issues/8538