diff options
| author | Dawid Nowak <code@dnowak.pl> | 2015-06-03 01:54:30 +0200 |
|---|---|---|
| committer | Fabien Potencier <fabien.potencier@gmail.com> | 2015-10-05 16:40:29 +0200 |
| commit | 135b1b5bb942c97ec1f1d5e811063a7be3cae35e (patch) | |
| tree | a93df9aca9b0e64067ef6cd8eebbe74d42e770f3 /Http/RememberMe | |
| parent | 86642118470f5301b4e29b8fb7d3dfe876c2e83e (diff) | |
| download | symfony-security-135b1b5bb942c97ec1f1d5e811063a7be3cae35e.zip symfony-security-135b1b5bb942c97ec1f1d5e811063a7be3cae35e.tar.gz symfony-security-135b1b5bb942c97ec1f1d5e811063a7be3cae35e.tar.bz2 | |
[Security][bugfix] "Remember me" cookie cleared on logout with custom "secure"/"httponly" config options [1]
Diffstat (limited to 'Http/RememberMe')
| -rw-r--r-- | Http/RememberMe/AbstractRememberMeServices.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Http/RememberMe/AbstractRememberMeServices.php b/Http/RememberMe/AbstractRememberMeServices.php index 16f7831..ac5e10e 100644 --- a/Http/RememberMe/AbstractRememberMeServices.php +++ b/Http/RememberMe/AbstractRememberMeServices.php @@ -293,7 +293,7 @@ abstract class AbstractRememberMeServices implements RememberMeServicesInterface $this->logger->debug(sprintf('Clearing remember-me cookie "%s"', $this->options['name'])); } - $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'])); + $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'], $this->options['secure'], $this->options['httponly'])); } /** |