From 64f4430cda0132624987d8a5471b41ba17e9a2c0 Mon Sep 17 00:00:00 2001
From: Robin Chalas <robin.chalas@gmail.com>
Date: Sat, 2 Nov 2019 08:18:28 +0100
Subject: [PATCH] [Security] Add back ROLE_PREVIOUS_ADMIN to impersonated user

---
 .../Component/Security/Http/Firewall/SwitchUserListener.php     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php b/src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php
index 85b8b6bf18..e2aeadb58a 100644
--- a/src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php
+++ b/src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php
@@ -149,7 +149,7 @@ class SwitchUserListener
         $this->userChecker->checkPostAuth($user);
 
         $roles = $user->getRoles();
-
+        $roles[] = 'ROLE_PREVIOUS_ADMIN';
         $token = new SwitchUserToken($user, $user->getPassword(), $this->providerKey, $roles, $token);
 
         if (null !== $this->dispatcher) {