diogo/symfony
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[Security][Http][SwitchUserListener] Ignore all non existent username protection errors

Browse Source
This commit is contained in:
Thomas Calvet 2020-04-01 11:15:47 +02:00
parent be0515ffb6
commit 42311d5c29
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php
View File

@ -168,7 +168,7 @@ class SwitchUserListener extends AbstractListener implements ListenerInterface
try { try {
$this->provider->loadUserByUsername($nonExistentUsername); $this->provider->loadUserByUsername($nonExistentUsername);
} catch (AuthenticationException $e) { } catch (\Exception $e) {
} }
} catch (AuthenticationException $e) { } catch (AuthenticationException $e) {
$this->provider->loadUserByUsername($currentUsername); $this->provider->loadUserByUsername($currentUsername);