Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork9.7k
[Security] Prevent creating session in stateless firewalls#51350
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Conversation
carsonbot commentedAug 11, 2023
Hey! Thanks for your PR. You are targeting branch "6.4" but it seems your PR description refers to branch "6.3". Cheers! Carsonbot |
chalasr left a comment
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
Please add test cases with_stateless => true for both success and failure handlers to prevent regressions
Seb33300 commentedAug 16, 2023
@chalasr tests added |
stloyd commentedAug 21, 2023
@wouterj@chalasr Could you have a second look at this? I can confirm the fix on HWIOAuthBundle. Before: After: |
...ony/Component/Security/Http/Tests/Authentication/DefaultAuthenticationFailureHandlerTest.phpShow resolvedHide resolved
Uh oh!
There was an error while loading.Please reload this page.
stloyd commentedAug 25, 2023
@fabpot /@nicolas-grekas or anyone else can check this fix? I would love to have it in near 6.3 release |
Seb33300 commentedAug 25, 2023
chalasr commentedAug 25, 2023
Thank you@Seb33300. |
Uh oh!
There was an error while loading.Please reload this page.
Please check related issue for details.
Same as#51320 with@chalasr suggestion:#51320 (comment)