docs(basics/controllers): clarify session variable usage, locking, best practices #6557

	name: OpenAPI

	on: pull_request

	permissions:
	contents: read

	concurrency:
	group: openapi-${{ github.head_ref \|\| github.run_id }}
	cancel-in-progress: true

	jobs:
	openapi:
	runs-on: ubuntu-latest

	steps:
	- name: Checkout
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with:
	persist-credentials: false

	- name: Set up php
	uses: shivammathur/setup-php@44454db4f0199b8b9685a5d763dc37cbf79108e1 # v2.36.0
	with:
	php-version: '8.1'
	# https://docs.nextcloud.com/server/stable/admin_manual/installation/source_installation.html#prerequisites-for-manual-installation
	extensions: bz2, ctype, curl, dom, fileinfo, gd, iconv, intl, json, libxml, mbstring, openssl, pcntl, posix, session, simplexml, xmlreader, xmlwriter, zip, zlib
	coverage: none
	ini-file: development
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

	- name: Build using Makefile
	run: make openapi-spec

Provide feedback