Fix broken session management for application api

pterodactyl · Nov 4, 2021 · 17c03e9 · 17c03e9
1 parent e8a8405
commit 17c03e9
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -3,7 +3,13 @@ This file is a running track of new features and fixes to each version of the pa
 
 This project follows [Semantic Versioning](http://semver.org) guidelines.
 
+## v1.6.5
+### Fixed
+* Fixes broken application API endpoints due to changes introduced with session management in 1.6.4.
+
 ## v1.6.4
+_This release should not be used, please use `1.6.5`. It has been pulled from our releases._
+
 ### Fixed
 * Fixes a session management bug that would cause a user who signs out of one browser to be unintentionally logged out of other browser sessions when using the client API.
 

diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
@@ -70,6 +70,8 @@ class Kernel extends HttpKernel
         'api' => [
             HandleStatelessRequest::class,
             IsValidJson::class,
+            StartSession::class,
+            AuthenticateSession::class,
             ApiSubstituteBindings::class,
             'api..key:' . ApiKey::TYPE_APPLICATION,
             AuthenticateApplicationUser::class,