reject remember-me token if user check fails
This commit is contained in:
parent
5e0bb5f973
commit
fe190b6ee9
|
@ -49,6 +49,7 @@ class RememberMeAuthenticationProvider implements AuthenticationProviderInterfac
|
||||||
|
|
||||||
$user = $token->getUser();
|
$user = $token->getUser();
|
||||||
$this->userChecker->checkPreAuth($user);
|
$this->userChecker->checkPreAuth($user);
|
||||||
|
$this->userChecker->checkPostAuth($user);
|
||||||
|
|
||||||
$authenticatedToken = new RememberMeToken($user, $this->providerKey, $this->key);
|
$authenticatedToken = new RememberMeToken($user, $this->providerKey, $this->key);
|
||||||
$authenticatedToken->setAttributes($token->getAttributes());
|
$authenticatedToken->setAttributes($token->getAttributes());
|
||||||
|
|
Reference in New Issue