Merge pull request #11082 from nextcloud/fix/10584/no_invalidate_token_oauth

Do not invalidate main token on OAuth

Author: rullzer

core/Controller/ClientFlowLoginController.php

@@ -366,10 +366,10 @@ public function generateAppPassword($stateToken,
 
 			$serverPath = $protocol . "://" . $this->request->getServerHost() . $serverPostfix;
 			$redirectUri = 'nc://login/server:' . $serverPath . '&user:' . urlencode($loginName) . '&password:' . urlencode($token);
-		}
 
-		// Clear the token from the login here
-		$this->tokenProvider->invalidateToken($sessionId);
+			// Clear the token from the login here
+			$this->tokenProvider->invalidateToken($sessionId);
+		}
 
 		return new Http\RedirectResponse($redirectUri);
 	}