symfony

Archived

forked from https://github.com/symfony/symfony

This repository has been archived on 2023-08-20. You can view files and clone it, but cannot push or open issues or pull requests.

Go to file

Fabien Potencier f0b1dc2f7e bug #25583 [HttpKernel] Call Response->setPrivate() instead of sending raw header() when session is started (Toflar) This PR was merged into the 3.4 branch. Discussion ---------- [HttpKernel] Call Response->setPrivate() instead of sending raw header() when session is started \| Q \| A \| ------------- \| --- \| Branch? \| 3.4 \| Bug fix? \| yes \| New feature? \| no \| BC breaks? \| no \| Deprecations? \| no \| Tests pass? \| yes \| Fixed tickets \| https://github.com/symfony/symfony/issues/24988 \| License \| MIT \| Doc PR \| - As described in #24988 I think the current handling of the `Cache-Control` header set by the `NativeSessionStorage` causes inconsistent behaviour. In #24988 @nicolas-grekas states that if you start a session a response should be considered to be private. I do agree with this but up until now, nobody takes care of this on `kernel.response`. I think we must always suppress the `NativeSessionStorage` from generating any headers by default. Otherwise the `Cache-Control` header never makes it to the `Response` instance and is thus missed by `kernel.response` listeners and for example the Symfony HttpCache. So depending on whether you use Symfony's HttpCache or Varnish as a reverse proxy, caching would be handled differently. Varnish would consider the response to be private if you set the php.ini setting `session.cache_limiter` to `nocache` (which is default) because it will receive the header. HttpCache would not because the `Cache-Control` header is not present on the `Response`. That's inconsistent and may cause confusion or problems when switching proxies. Commits ------- `dbc1c1c4b6` [HttpKernel] Call Response->setPrivate() instead of sending raw header() when session is started		2017-12-31 04:28:37 +01:00
.composer	Drop hirak/prestissimo	2016-05-12 07:44:15 -05:00
.github	Update github PR template	2017-11-22 09:34:48 +01:00
src/Symfony	bug #25583 [HttpKernel] Call Response->setPrivate() instead of sending raw header() when session is started (Toflar)	2017-12-31 04:28:37 +01:00
.editorconfig	Add EditorConfig File	2012-06-16 14:08:15 +02:00
.gitignore	Add appveyor.yml for C.I. on Windows	2015-08-25 23:41:37 +02:00
.php_cs.dist	Merge branch '2.8' into 3.3	2017-12-29 16:48:30 +01:00
.travis.yml	Merge branch '2.8' into 3.3	2017-10-10 12:12:32 +02:00
appveyor.yml	[appveyor] disable memory limit on composer up	2017-12-08 16:04:33 +01:00
CHANGELOG-3.0.md	Merge branch '2.8' into 3.1	2016-08-05 10:37:39 +02:00
CHANGELOG-3.1.md	updated CHANGELOG for 3.1.9	2017-01-12 12:43:31 -08:00
CHANGELOG-3.2.md	updated CHANGELOG for 3.2.13	2017-08-01 11:40:12 +02:00
CHANGELOG-3.3.md	updated CHANGELOG for 3.3.14	2017-12-04 14:26:15 -08:00
CHANGELOG-3.4.md	updated CHANGELOG for 3.4.2	2017-12-14 18:05:10 -08:00
composer.json	Merge branch '2.7' into 2.8	2017-11-21 10:57:39 +01:00
CONTRIBUTING.md	Mention the community review guide	2016-12-18 22:02:35 +01:00
CONTRIBUTORS.md	update CONTRIBUTORS for 2.7.39	2017-12-04 12:40:02 -08:00
LICENSE	updated LICENSE year	2017-01-02 12:30:00 -08:00
link	minor #25257 [link] clear the cache after linking (dunglas)	2017-12-01 17:33:23 -08:00
phpunit	Force phpunit-bridge update (bis)	2017-11-22 10:25:38 +01:00
phpunit.xml.dist	Merge branch '3.2'	2017-04-12 07:14:56 -07:00
README.md	Fix minor typo in the main README.md	2017-04-27 20:23:38 +02:00
UPGRADE-3.0.md	Fixed formatting in Security section	2017-04-14 11:38:02 +02:00
UPGRADE-3.1.md	[Serializer] Remove AbstractObjectNormalizer::isAttributeToNormalize	2016-12-08 16:02:32 +01:00
UPGRADE-3.2.md	[DI] Check for privates before shared services	2017-05-23 19:58:02 +02:00
UPGRADE-3.3.md	Merge branch '3.3' into 3.4	2017-11-30 15:59:23 +01:00
UPGRADE-3.4.md	Fixed 'RouterInteface' typo	2017-12-20 16:01:44 +01:00
UPGRADE-4.0.md	Fixed 'RouterInteface' typo	2017-12-20 16:01:44 +01:00

README.md

Symfony is a PHP framework for web applications and a set of reusable PHP components. Symfony is used by thousands of web applications (including BlaBlaCar.com and Spotify.com) and most of the popular PHP projects (including Drupal and Magento).

Installation

Install Symfony with Composer or with our own installer (see requirements details).
Symfony follows the semantic versioning strictly, publishes "Long Term Support" (LTS) versions and has a release process that is predictable and business-friendly.

Documentation

Read the Getting Started guide if you are new to Symfony.
Try the Symfony Demo application to learn Symfony in practice.
Master Symfony with the Guides and Tutorials, the Components docs and the Best Practices reference.

Community

Join the Symfony Community and meet other members at the Symfony events.
Get Symfony support on Stack Overflow, Slack, IRC, etc.
Follow us on GitHub, Twitter and Facebook.

Contributing

Symfony is an Open Source, community-driven project with thousands of contributors. Join them contributing code or contributing documentation.

Security Issues

If you discover a security vulnerability within Symfony, please follow our disclosure procedure.

About Us

Symfony development is sponsored by SensioLabs, led by the Symfony Core Team and supported by Symfony contributors.