diff options
| author | Kris Wallsmith <kris.wallsmith@gmail.com> | 2011-05-16 14:11:34 -0700 |
|---|---|---|
| committer | Kris Wallsmith <kris.wallsmith@gmail.com> | 2011-05-16 14:16:30 -0700 |
| commit | 6b3a0ace240ef45f1a74792ca289d98241e4778f (patch) | |
| tree | 9fda1b8fce815fea10c081f44739bf3264356cae | |
| parent | 70cfab061f99a8c44c168cb3b493b9eac88159a1 (diff) | |
| download | symfony-security-6b3a0ace240ef45f1a74792ca289d98241e4778f.zip symfony-security-6b3a0ace240ef45f1a74792ca289d98241e4778f.tar.gz symfony-security-6b3a0ace240ef45f1a74792ca289d98241e4778f.tar.bz2 | |
[Security] updated with "intention"
| -rw-r--r-- | Http/Firewall/UsernamePasswordFormAuthenticationListener.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/Http/Firewall/UsernamePasswordFormAuthenticationListener.php b/Http/Firewall/UsernamePasswordFormAuthenticationListener.php index 4ad456c..51546c0 100644 --- a/Http/Firewall/UsernamePasswordFormAuthenticationListener.php +++ b/Http/Firewall/UsernamePasswordFormAuthenticationListener.php @@ -42,7 +42,7 @@ class UsernamePasswordFormAuthenticationListener extends AbstractAuthenticationL 'username_parameter' => '_username', 'password_parameter' => '_password', 'csrf_parameter' => '_csrf_token', - 'csrf_page_id' => 'form_login', + 'intention' => 'authenticate', 'post_only' => true, ), $options), $successHandler, $failureHandler, $logger, $dispatcher); @@ -65,7 +65,7 @@ class UsernamePasswordFormAuthenticationListener extends AbstractAuthenticationL if (null !== $this->csrfProvider) { $csrfToken = $request->get($this->options['csrf_parameter']); - if (false === $this->csrfProvider->isCsrfTokenValid($this->options['csrf_page_id'], $csrfToken)) { + if (false === $this->csrfProvider->isCsrfTokenValid($this->options['intention'], $csrfToken)) { throw new InvalidCsrfTokenException('Invalid CSRF token.'); } } |