[Security] added some more tests

1 files changed, 6 insertions, 2 deletions

diff --git a/Core/Authentication/Token/AbstractToken.php b/Core/Authentication/Token/AbstractToken.php
index 3839154..210e46d 100644
--- a/Core/Authentication/Token/AbstractToken.php
+++ b/Core/Authentication/Token/AbstractToken.php
@@ -84,11 +84,15 @@ abstract class AbstractToken implements TokenInterface
         if (null === $this->user) {
             $changed = false;
         } else if ($this->user instanceof UserInterface) {
-            $changed = $this->user->equals($user);
+            if (!$user instanceof UserInterface) {
+                $changed = true;
+            } else {
+                $changed = !$this->user->equals($user);
+            }
         } else if ($user instanceof UserInterface) {
             $changed = true;
         } else {
-            $changed = (string) $this->user === (string) $user;
+            $changed = (string) $this->user !== (string) $user;
         }
 
         if ($changed) {