fix: patch-034 for nc32 upgrade

--- lib/private/AppFramework/Middleware/Security/CORSMiddleware.php	2024-04-08 08:53:20.410444998 +0530

+++ lib/private/AppFramework/Middleware/Security/CORSMiddleware-new.php	2024-04-09 19:05:21.133629632 +0530

@@ -75,6 +75,10 @@

 			// Allow to use the current session if a CSRF token is provided

--- ./lib/private/AppFramework/Middleware/Security/CORSMiddleware.php	2026-03-23 17:46:39.514001621 +0600

+++ ./lib/private/AppFramework/Middleware/Security/CORSMiddleware-new.php	2026-03-24 11:39:03.905538544 +0600

@@ -77,6 +77,10 @@

 			if ($this->request->passesCSRFCheck()) {

 				return;

+			}			

 			}

+			// Skip CORS check for requests with oidc token auth.

+			if ($this->session->getSession() instanceof ISession && $this->session->getSession()->get('is_oidc_token_login') === 1) {

+				return;

 			}

+			}

 			// Skip CORS check for requests with AppAPI auth.

 			if ($this->session->getSession() instanceof ISession && $this->session->getSession()->get('app_api') === true) {

 				return;