summaryrefslogtreecommitdiffstats
path: root/Csrf
diff options
context:
space:
mode:
authorNicolas Grekas <nicolas.grekas@gmail.com>2015-10-14 16:40:43 +0200
committerNicolas Grekas <nicolas.grekas@gmail.com>2015-10-28 03:15:07 +0100
commit1473342e7bb5d3d3080f78b196f528b4acf34db2 (patch)
tree3319333a745b78bd7b4b04c504be69d7543f729b /Csrf
parentd355322988b1c1d1798e19c41cc86b4169c31f2a (diff)
downloadsymfony-security-1473342e7bb5d3d3080f78b196f528b4acf34db2.zip
symfony-security-1473342e7bb5d3d3080f78b196f528b4acf34db2.tar.gz
symfony-security-1473342e7bb5d3d3080f78b196f528b4acf34db2.tar.bz2
Rely on iconv and symfony/polyfill-*
Diffstat (limited to 'Csrf')
-rw-r--r--Csrf/CsrfTokenManager.php3
-rw-r--r--Csrf/composer.json4
2 files changed, 3 insertions, 4 deletions
diff --git a/Csrf/CsrfTokenManager.php b/Csrf/CsrfTokenManager.php
index e129502..cdda543 100644
--- a/Csrf/CsrfTokenManager.php
+++ b/Csrf/CsrfTokenManager.php
@@ -11,7 +11,6 @@
namespace Symfony\Component\Security\Csrf;
-use Symfony\Component\Security\Core\Util\StringUtils;
use Symfony\Component\Security\Csrf\TokenGenerator\UriSafeTokenGenerator;
use Symfony\Component\Security\Csrf\TokenGenerator\TokenGeneratorInterface;
use Symfony\Component\Security\Csrf\TokenStorage\NativeSessionTokenStorage;
@@ -92,6 +91,6 @@ class CsrfTokenManager implements CsrfTokenManagerInterface
return false;
}
- return StringUtils::equals($this->storage->getToken($token->getId()), $token->getValue());
+ return hash_equals($this->storage->getToken($token->getId()), $token->getValue());
}
}
diff --git a/Csrf/composer.json b/Csrf/composer.json
index 2afebf9..c8e2fae 100644
--- a/Csrf/composer.json
+++ b/Csrf/composer.json
@@ -17,8 +17,8 @@
],
"require": {
"php": ">=5.3.9",
- "symfony/security-core": "~2.4|~3.0.0",
- "paragonie/random_compat": "~1.0"
+ "symfony/polyfill-php56": "~1.0",
+ "symfony/security-core": "~2.4|~3.0.0"
},
"require-dev": {
"symfony/http-foundation": "~2.1|~3.0.0"
generated by cgit v1.1 at 2025-05-10 23:25:30 +0000