merged branch schmittjoh/addNoteFor404 (PR #5325)
Commits
-------
0f575a2
added note about 404 error pages
Discussion
----------
added note about 404 error pages and security features
This has been reported a few times now, and it seems we did not have it in the UPGRADE file yet.
This commit is contained in:
commit
af491b8051
|
@ -14,7 +14,7 @@
|
||||||
for multiple environments.
|
for multiple environments.
|
||||||
|
|
||||||
* The priorities for the built-in listeners have changed.
|
* The priorities for the built-in listeners have changed.
|
||||||
|
|
||||||
```
|
```
|
||||||
2.0 2.1
|
2.0 2.1
|
||||||
security.firewall kernel.request 64 8
|
security.firewall kernel.request 64 8
|
||||||
|
@ -204,7 +204,9 @@
|
||||||
|
|
||||||
* The Firewall listener is now registered after the Router listener. This
|
* The Firewall listener is now registered after the Router listener. This
|
||||||
means that specific Firewall URLs (like /login_check and /logout) must now
|
means that specific Firewall URLs (like /login_check and /logout) must now
|
||||||
have proper routes defined in your routing configuration.
|
have proper routes defined in your routing configuration. Also, if you have
|
||||||
|
a custom 404 error page, make sure that you do not use any security related
|
||||||
|
features such as `is_granted` on it.
|
||||||
|
|
||||||
* The user provider configuration has been refactored. The configuration
|
* The user provider configuration has been refactored. The configuration
|
||||||
for the chain provider and the memory provider has been changed:
|
for the chain provider and the memory provider has been changed:
|
||||||
|
@ -248,9 +250,9 @@
|
||||||
use Symfony\Bundle\SecurityBundle\Validator\Constraint\UserPassword;
|
use Symfony\Bundle\SecurityBundle\Validator\Constraint\UserPassword;
|
||||||
use Symfony\Bundle\SecurityBundle\Validator\Constraint as SecurityAssert;
|
use Symfony\Bundle\SecurityBundle\Validator\Constraint as SecurityAssert;
|
||||||
```
|
```
|
||||||
|
|
||||||
After:
|
After:
|
||||||
|
|
||||||
```
|
```
|
||||||
use Symfony\Component\Security\Core\Validator\Constraint\UserPassword;
|
use Symfony\Component\Security\Core\Validator\Constraint\UserPassword;
|
||||||
use Symfony\Component\Security\Core\Validator\Constraint as SecurityAssert;
|
use Symfony\Component\Security\Core\Validator\Constraint as SecurityAssert;
|
||||||
|
|
Reference in New Issue