From 96d300b912e45d703e8e0160c655d185d82058be Mon Sep 17 00:00:00 2001
From: Thorsten Eckel <te@znuny.com>
Date: Mon, 2 Dec 2019 14:17:57 +0100
Subject: [PATCH] Maintenance: authentication_check Controller callback runs
 after CSRF token check which leads to failing POST/PUT, non-Session
 authenticated requests.

---
 app/controllers/knowledge_base/base_controller.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/controllers/knowledge_base/base_controller.rb b/app/controllers/knowledge_base/base_controller.rb
index 86b9c1d82..e5a261e38 100644
--- a/app/controllers/knowledge_base/base_controller.rb
+++ b/app/controllers/knowledge_base/base_controller.rb
@@ -1,7 +1,7 @@
 # Copyright (C) 2012-2017 Zammad Foundation, http://zammad-foundation.org/
 
 class KnowledgeBase::BaseController < ApplicationController
-  before_action :authentication_check
+  prepend_before_action :authentication_check
   before_action :ensure_editor_or_reader
   before_action :ensure_editor, only: %i[create update destroy]