Fabien Potencier
86f164b6ff
Merge branch '3.4' into 4.0
...
* 3.4:
simplified code
2018-05-24 17:52:33 +02:00
Fabien Potencier
91c25689d2
simplified code
2018-05-24 17:52:07 +02:00
Nicolas Grekas
d8cbec00ad
[FrameworkBundle] cleanup generated test container
2018-05-24 17:31:00 +02:00
Fabien Potencier
37003ec730
Merge branch '4.0' into 4.1
...
* 4.0:
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:24:47 +02:00
Fabien Potencier
f11c24e148
Merge branch '3.4' into 4.0
...
* 3.4:
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:24:39 +02:00
Fabien Potencier
500bede9c8
Merge branch '2.8' into 3.4
...
* 2.8:
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:24:30 +02:00
Fabien Potencier
6d455f224b
Merge branch '2.7' into 2.8
...
* 2.7:
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:22:57 +02:00
Fabien Potencier
b20e83562e
security #cve-2018-11408 [SecurityBundle] Fail if security.http_utils cannot be configured
...
* cve-2018-11408-2.7:
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:22:46 +02:00
Nicolas Grekas
c003b7a247
[SecurityBundle] Fail if security.http_utils cannot be configured
2018-05-24 15:22:37 +02:00
Fabien Potencier
3626bd1214
Merge branch '4.0' into 4.1
...
* 4.0:
clear CSRF tokens when the user is logged out
2018-05-24 15:20:06 +02:00
Fabien Potencier
99c9b2d4c0
Merge branch '3.4' into 4.0
...
* 3.4:
clear CSRF tokens when the user is logged out
2018-05-24 15:19:09 +02:00
Fabien Potencier
fd29c8c204
Merge branch '2.8' into 3.4
...
* 2.8:
2018-05-24 15:17:49 +02:00
Fabien Potencier
2111742676
Merge branch '2.7' into 2.8
...
* 2.7:
clear CSRF tokens when the user is logged out
2018-05-24 14:58:29 +02:00
Fabien Potencier
ebc2819d1d
Merge branch '2.8' into 3.4
...
* 2.8:
clear CSRF tokens when the user is logged out
2018-05-24 14:51:10 +02:00
Fabien Potencier
a5d0b571fa
Merge branch '2.7' into 2.8
...
* 2.7:
clear CSRF tokens when the user is logged out
2018-05-24 14:44:24 +02:00
Fabien Potencier
319e1bdd43
security #cve-2018-11406 clear CSRF tokens when the user is logged out
...
* cve-2018-11406-2.7:
clear CSRF tokens when the user is logged out
2018-05-24 14:39:56 +02:00
Christian Flothmann
4b91c171af
clear CSRF tokens when the user is logged out
2018-05-24 14:39:52 +02:00
Nicolas Grekas
8bba68f811
[DI] Fix bad exception on uninitialized references to non-shared services
2018-05-24 14:02:14 +02:00
Kévin Dunglas
e88e0f30f1
[Serializer] Check the value of enable_max_depth if defined
2018-05-24 13:51:58 +02:00
Nicolas Grekas
1314a952cd
[DI] remove dead code
2018-05-24 09:11:23 +02:00
Nicolas Grekas
f8e7a18d1b
[HttpFoundation] Fix perf issue during MimeTypeGuesser intialization
2018-05-23 23:23:26 +02:00
Gabriel Ostrolucký
87b3ad91d2
[PhpUnitBridge] silence some stderr outputs
2018-05-23 23:09:40 +02:00
Fabien Potencier
a4bb5a8bdb
Merge branch '4.0' into 4.1
...
* 4.0:
migrating session for UsernamePasswordJsonAuthenticationListener
2018-05-23 17:06:59 +02:00
Fabien Potencier
ef7b3d0a1d
Merge branch '3.4' into 4.0
...
* 3.4:
migrating session for UsernamePasswordJsonAuthenticationListener
Adding session authentication strategy to Guard to avoid session fixation
Adding session strategy to ALL listeners to avoid *any* possible fixation
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 16:59:06 +02:00
Fabien Potencier
194caff28b
security #cve-2018-11385 migrating session for UsernamePasswordJsonAuthenticationListener
...
* cve-2018-11385-3.4:
migrating session for UsernamePasswordJsonAuthenticationListener
2018-05-23 16:58:32 +02:00
Ryan Weaver
891ae6b28b
migrating session for UsernamePasswordJsonAuthenticationListener
2018-05-23 16:58:28 +02:00
Fabien Potencier
73432d5fbb
Merge branch '2.8' into 3.4
...
* 2.8:
Adding session authentication strategy to Guard to avoid session fixation
Adding session strategy to ALL listeners to avoid *any* possible fixation
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 16:55:09 +02:00
Fabien Potencier
1bb544fd58
Merge branch '4.0' into 4.1
...
* 4.0:
migrating session for UsernamePasswordJsonAuthenticationListener
Adding session authentication strategy to Guard to avoid session fixation
Adding session strategy to ALL listeners to avoid *any* possible fixation
2018-05-23 15:57:18 +02:00
Fabien Potencier
24263715ef
Merge branch '3.4' into 4.0
...
* 3.4:
migrating session for UsernamePasswordJsonAuthenticationListener
Adding session authentication strategy to Guard to avoid session fixation
Adding session strategy to ALL listeners to avoid *any* possible fixation
2018-05-23 15:57:09 +02:00
Fabien Potencier
b5fef05c1b
security #cve-2018-11385 migrating session for UsernamePasswordJsonAuthenticationListener
...
* cve-2018-11385-3.4:
migrating session for UsernamePasswordJsonAuthenticationListener
2018-05-23 15:56:36 +02:00
Ryan Weaver
625fece149
migrating session for UsernamePasswordJsonAuthenticationListener
2018-05-23 15:56:29 +02:00
Fabien Potencier
d9b0f47d3d
Merge branch '2.8' into 3.4
...
* 2.8:
Adding session authentication strategy to Guard to avoid session fixation
Adding session strategy to ALL listeners to avoid *any* possible fixation
2018-05-23 15:56:03 +02:00
Fabien Potencier
fad1e1f2ea
security #cve-2018-11385 Adding session authentication strategy to Guard to avoid session fixation
...
* cve-2018-11385-2.8:
Adding session authentication strategy to Guard to avoid session fixation
2018-05-23 15:51:54 +02:00
Ryan Weaver
f2e83ba44d
Adding session authentication strategy to Guard to avoid session
...
fixation
2018-05-23 15:51:48 +02:00
Fabien Potencier
a1a5fa8b2f
Merge branch '2.7' into 2.8
...
* 2.7:
Adding session strategy to ALL listeners to avoid *any* possible fixation
2018-05-23 15:51:01 +02:00
Fabien Potencier
fa5bf4b17d
security #cve-2018-11385 Adding session strategy to ALL listeners to avoid *any* possible fixation
...
* cve-2018-11385-2.7:
Adding session strategy to ALL listeners to avoid *any* possible fixation
2018-05-23 15:50:13 +02:00
Ryan Weaver
a5855e8c97
Adding session strategy to ALL listeners to avoid *any* possible
...
fixation
2018-05-23 15:49:30 +02:00
Fabien Potencier
b9d83eed67
Merge branch '4.0' into 4.1
...
* 4.0:
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 15:44:09 +02:00
Fabien Potencier
aaa3719b7e
Merge branch '3.4' into 4.0
...
* 3.4:
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 15:43:56 +02:00
Fabien Potencier
e9be01c9a1
Merge branch '2.8' into 3.4
...
* 2.8:
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 15:43:28 +02:00
Nicolas Grekas
755815993d
Merge branch '4.0' into 4.1
...
* 4.0:
Fixed content trace CSS in profiler
[Form] fix tests on old phpunit versions
[FrameworkBundle] fix typo in CacheClearCommand
bumped Symfony version to 4.0.11
updated VERSION for 4.0.10
updated CHANGELOG for 4.0.10
bumped Symfony version to 3.4.11
updated VERSION for 3.4.10
updated CHANGELOG for 3.4.10
bumped Symfony version to 2.8.41
updated VERSION for 2.8.40
updated CHANGELOG for 2.8.40
bumped Symfony version to 2.7.48
updated VERSION for 2.7.47
update CONTRIBUTORS for 2.7.47
updated CHANGELOG for 2.7.47
fixed test
2018-05-23 15:33:23 +02:00
Fabien Potencier
abc802390b
Merge branch '2.7' into 2.8
...
* 2.7:
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 15:29:24 +02:00
Fabien Potencier
4db96f5418
Merge branch '3.4' into 4.0
...
* 3.4:
Fixed content trace CSS in profiler
bumped Symfony version to 2.8.41
updated VERSION for 2.8.40
updated CHANGELOG for 2.8.40
bumped Symfony version to 2.7.48
updated VERSION for 2.7.47
update CONTRIBUTORS for 2.7.47
updated CHANGELOG for 2.7.47
2018-05-23 15:27:22 +02:00
Fabien Potencier
ffd612c9a6
Merge branch '2.8' into 3.4
...
* 2.8:
bumped Symfony version to 2.8.41
updated VERSION for 2.8.40
updated CHANGELOG for 2.8.40
bumped Symfony version to 2.7.48
updated VERSION for 2.7.47
update CONTRIBUTORS for 2.7.47
updated CHANGELOG for 2.7.47
2018-05-23 15:26:51 +02:00
Fabien Potencier
a75781cc29
Merge branch '2.7' into 2.8
...
* 2.7:
bumped Symfony version to 2.7.48
updated VERSION for 2.7.47
update CONTRIBUTORS for 2.7.47
updated CHANGELOG for 2.7.47
2018-05-23 15:24:13 +02:00
Fabien Potencier
47e72683c6
security #cve-2018-11386 [HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
...
* cve-2018-11386:
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 15:15:59 +02:00
Nicolas Grekas
0cf874e23e
[HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode
2018-05-23 14:36:15 +02:00
Christophe Coevoet
d8fb1b97c9
Remove reference to the test container after kernel shutdown
...
This reference is not working anymore, as the main container was reset and
cleaned. Keeping a reference to the test container will prevent collecting
the object graph.
2018-05-23 12:38:43 +02:00
Jérôme
3e0a0f4cb5
Fix missing use in UserInterface
...
Fix missing Role use used for getRoles return type.
2018-05-23 12:02:33 +02:00
Alessandro Chitolina
0ecaefe179
[HttpKernel] fix deprecation in AbstractTestSessionListener
2018-05-23 10:30:03 +02:00