symfony

diogo/symfony

Archived

Fork 0

Commit Graph

Author	SHA1	Message	Date
Ryan Weaver	873ed284d2	Renaming the tokens to be clear they are "post" and "pre" auth - also adding an interface The reason is that the GuardAuthenticationProvider must respond to all tokens created by the system - both "pre auth" and "post auth" tokens. The reason is that if a "post auth" token becomes not authenticated (e.g. because the user changes between requests), then it may be passed to the provider system. If no providers respond (which was the case before this commit), then AuthenticationProviderManager throws an exception. The next commit will properly handle these "post auth" + "no-longer-authenticated" tokens, which should cause a log out.	2015-09-20 19:24:20 -04:00

Author

SHA1

Message

Date

Ryan Weaver

873ed284d2

Renaming the tokens to be clear they are "post" and "pre" auth - also adding an interface

The reason is that the GuardAuthenticationProvider *must* respond to *all* tokens
created by the system - both "pre auth" and "post auth" tokens. The reason is that
if a "post auth" token becomes not authenticated (e.g. because the user changes between
requests), then it may be passed to the provider system. If no providers respond (which
was the case before this commit), then AuthenticationProviderManager throws an exception.

The next commit will properly handle these "post auth" + "no-longer-authenticated" tokens,
which should cause a log out.

2015-09-20 19:24:20 -04:00

1 Commits