[Security] Add an option to disable the hasPreviousSession() check in AbstractAuthenticationListener

2012-07-09 01:05:31 +02:00 · 2012-07-09 01:05:31 +02:00 · 0562463cb7
commit 0562463cb7
parent b34bdd4639
2 changed files with 3 additions and 1 deletions
--- a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AbstractFactory.php
+++ b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AbstractFactory.php
@ -36,6 +36,7 @@ abstract class AbstractFactory implements SecurityFactoryInterface
        'use_referer'                    => false,
        'failure_path'                   => null,
        'failure_forward'                => false,
+        'require_previous_session'       => true,
    );

    public function create(ContainerBuilder $container, $id, $config, $userProviderId, $defaultEntryPointId)
--- a/src/Symfony/Component/Security/Http/Firewall/AbstractAuthenticationListener.php
+++ b/src/Symfony/Component/Security/Http/Firewall/AbstractAuthenticationListener.php
@ -98,6 +98,7 @@ abstract class AbstractAuthenticationListener implements ListenerInterface
            'use_referer'                    => false,
            'failure_path'                   => null,
            'failure_forward'                => false,
+            'require_previous_session'       => true,
        ), $options);
        $this->logger = $logger;
        $this->dispatcher = $dispatcher;
@ -132,7 +133,7 @@ abstract class AbstractAuthenticationListener implements ListenerInterface
        }

        try {
-            if (!$request->hasPreviousSession()) {
+            if ($this->options['require_previous_session'] && !$request->hasPreviousSession()) {
                throw new SessionUnavailableException('Your session has timed out, or you have disabled cookies.');
            }