diogo/symfony
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2023-08-20. You can view files and clone it, but cannot push or open issues or pull requests.
aaaa04003d
symfony/tests/Symfony/Tests/Component/Security/Http/Firewall
History
Jeremy Mikola aaaa04003d [Security] Allow LogoutListener to validate CSRF tokens 
This adds several new options to the logout listener, modeled after the form_login listener:

 * csrf_parameter
 * intention
 * csrf_provider

The "csrf_parameter" and "intention" have default values if omitted. By default, "csrf_provider" is empty and CSRF validation is disabled in LogoutListener (preserving BC). If a service ID is given for "csrf_provider", CSRF validation will be enabled. Invalid tokens will result in an InvalidCsrfTokenException being thrown before any logout handlers are invoked.
2012-02-14 19:03:51 -05:00
..
AccessListenerTest.php [Security] Update access listener constructor's prototype and add tests 2011-06-26 10:28:10 +02:00
AnonymousAuthenticationListenerTest.php [Security] Add tests for the anonymous authentication listener 2011-06-26 11:28:17 +02:00
BasicAuthenticationListenerTest.php Fixed typo 2011-10-31 09:00:49 +01:00
ChannelListenerTest.php [Security] Add tests for the channel listener 2011-06-26 11:56:08 +02:00
ContextListenerTest.php reverted 5b7ef11650 (Simplify session 2012-02-11 12:04:50 +01:00
LogoutListenerTest.php [Security] Allow LogoutListener to validate CSRF tokens 2012-02-14 19:03:51 -05:00
RememberMeListenerTest.php removed unused use statements 2011-11-24 07:16:14 +01:00