summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Merge branch '2.8' into 3.1v3.1.9Fabien Potencier2017-01-025-5/+5
|\ | | | | | | | | | | | | * 2.8: updated LICENSE year updated LICENSE year Fixed `@return self` with `$this`
| * updated LICENSE yearv2.8.16origin/2.8Fabien Potencier2017-01-021-1/+1
| |
| * Merge branch '2.7' into 2.8Fabien Potencier2017-01-024-4/+4
| |\ | | | | | | | | | | | | | | | * 2.7: updated LICENSE year Fixed `@return self` with `$this`
| | * updated LICENSE yearv2.7.23origin/2.7Fabien Potencier2017-01-025-5/+5
| | |
| | * fixed @return when returning this or staticFabien Potencier2016-12-273-7/+7
| | |
* | | fixed obsolete getMock() usageFabien Potencier2016-12-198-49/+49
| | |
* | | Merge branch '2.8' into 3.1Fabien Potencier2016-12-1955-458/+458
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: fixed obsolete getMock() usage fixed obsolete getMock() usage [WebProfilerBundle] Display multiple HTTP headers in WDT do not remove the Twig ExceptionController service removed obsolete condition do not try to register incomplete definitions
| * | fixed obsolete getMock() usageFabien Potencier2016-12-1911-71/+71
| | |
| * | Merge branch '2.7' into 2.8Fabien Potencier2016-12-1952-434/+434
| |\ \ | | |/ | | | | | | | | | | | | * 2.7: fixed obsolete getMock() usage [WebProfilerBundle] Display multiple HTTP headers in WDT
| | * fixed obsolete getMock() usageFabien Potencier2016-12-1966-488/+488
| | |
| * | [Security] Fix testNicolas Grekas2016-12-171-1/+1
| | |
| * | Merge branch '2.7' into 2.8Fabien Potencier2016-12-142-1/+72
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | * 2.7: [Validator] add Indonesian translation fixed CS [config] Fix issue when key removed and left value only [Security] AbstractVoter method supportsAttribute gives false positive if attribute is zero (0)
| | * bug #20734 [Security] AbstractVoter->supportsAttribute gives false positive ↵Fabien Potencier2016-12-142-1/+72
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | if attribute is zero (0) (martynas-foodpanda) This PR was merged into the 2.7 branch. Discussion ---------- [Security] AbstractVoter->supportsAttribute gives false positive if attribute is zero (0) | Q | A | ------------- | --- | Branch? | 2.7 | Bug fix? | yes | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | | License | MIT | Doc PR | Issue is easy to reproduce with test giving negative data set. 0 should not pass as supported attribute for any set of attributes but it does as in_array in the method does not use flag 'strict' set to true. As this is abstract voter and is used by users with their code flag 'strict' should be set to true. Since is there in 2.7 and 2.8 (LTS) IMHO it should be fixed. Commits ------- 8306530 [Security] AbstractVoter method supportsAttribute gives false positive if attribute is zero (0)
| | | * [Security] AbstractVoter method supportsAttribute gives false positive if ↵Martynas Narbutas2016-12-032-1/+72
| | | | | | | | | | | | | | | | attribute is zero (0)
* | | | Merge branch '2.8' into 3.1v3.1.8Nicolas Grekas2016-12-084-4/+4
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [Twig] Fix deprecations with Twig 1.29 Fixed typo Fix email address fix the docblock in regard to the role argument [VarDumper] fix tests when xdebug is enabled Fix merge [Cache] Fix dumping SplDoublyLinkedList iter mode [Console] fixed PHP7 Errors when not using Dispatcher Regression test for missing controller arguments fix a test checking for a value [Form][DX] FileType "multiple" fixes fixed CS [TwigBundle] Fix twig loader registered twice [WebProfilerBundle] Fix dump block is unfairly restrained [Console] Fix wrong handling of multiline arg/opt descriptions [DependencyInjection] PhpDumper.php: hasReference() should not search references in lazy service arguments. [Form] fixed "empty_value" option deprecation Cast result to int before adding to it
| * | | Merge branch '2.7' into 2.8v2.8.15Nicolas Grekas2016-12-083-3/+3
| |\ \ \ | | |/ / | | | | | | | | | | | | | | | | | | | | * 2.7: [Twig] Fix deprecations with Twig 1.29 fix the docblock in regard to the role argument Cast result to int before adding to it
| | * | fix the docblock in regard to the role argumentv2.7.22Christian Flothmann2016-12-063-3/+3
| | |/
| * | Fix email addressVictor Bocharsky2016-12-071-1/+1
| | |
* | | Merge branch '2.8' into 3.1Nicolas Grekas2016-11-251-2/+2
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [Routing] Fail properly when a route parameter name cannot be used as a PCRE subpattern name [FrameworkBundle] Improve performance of ControllerNameParser Update documentation link to the component [HttpFoundation] Add links to RFC-7231 [DI] Initialize properties before method calls Tag missing internals [WebProfilerBundle] Dont use request attributes in RouterController Fix complete config tests
| * | Merge branch '2.7' into 2.8Nicolas Grekas2016-11-251-2/+2
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [Routing] Fail properly when a route parameter name cannot be used as a PCRE subpattern name [FrameworkBundle] Improve performance of ControllerNameParser Update documentation link to the component [HttpFoundation] Add links to RFC-7231 [DI] Initialize properties before method calls Tag missing internals [WebProfilerBundle] Dont use request attributes in RouterController Fix complete config tests
| | * minor #20626 Tag missing internals (ogizanagi)Nicolas Grekas2016-11-251-2/+2
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was merged into the 2.7 branch. Discussion ---------- Tag missing internals | Q | A | ------------- | --- | Branch? | 2.7 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | N/A | License | MIT | Doc PR | N/A Commits ------- 97e94b4 Tag missing internals
| | | * Tag missing internalsMaxime Steinhausser2016-11-251-2/+2
| | | |
* | | | Merge branch '2.8' into 3.1Fabien Potencier2016-11-231-1/+1
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [DI] minor FileLoaders tests update [HttpKernel] Revert BC breaking change of Request::isMethodSafe() [DOMCrawler] Bug fixed [Process] Do feat test before enabling TTY mode bumped Symfony version to 2.8.15 updated VERSION for 2.8.14 updated CHANGELOG for 2.8.14 bumped Symfony version to 2.7.22 updated VERSION for 2.7.21 update CONTRIBUTORS for 2.7.21 updated CHANGELOG for 2.7.21 Fix annotation type for $context [Doctrine][Form] support large integers
| * | | Merge branch '2.7' into 2.8Fabien Potencier2016-11-231-1/+1
| |\ \ \ | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [DI] minor FileLoaders tests update [HttpKernel] Revert BC breaking change of Request::isMethodSafe() [DOMCrawler] Bug fixed [Process] Do feat test before enabling TTY mode bumped Symfony version to 2.7.22 updated VERSION for 2.7.21 update CONTRIBUTORS for 2.7.21 updated CHANGELOG for 2.7.21 [Doctrine][Form] support large integers
| | * | [HttpKernel] Revert BC breaking change of Request::isMethodSafe()Nicolas Grekas2016-11-231-1/+1
| | |/
* | | Merge branch '2.8' into 3.1v3.1.7Fabien Potencier2016-11-161-1/+1
|\ \ \ | |/ / | | | | | | | | | | | | * 2.8: DX: replace @link with @see annotation bumped min version of Twig to 1.28
| * | Merge branch '2.7' into 2.8v2.8.14Fabien Potencier2016-11-151-1/+1
| |\ \ | | |/ | | | | | | | | | * 2.7: DX: replace @link with @see annotation
| | * DX: replace @link with @see annotationv2.7.21Dariusz Ruminski2016-11-131-1/+1
| | |
* | | Merge branch '2.8' into 3.1Nicolas Grekas2016-11-031-2/+2
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: CS fixes Remove trailing space CS: apply rules [Yaml] Clean some messages + add test case [Console] simplified code [Form] Fix UrlType transforms valid protocols [SecurityBundle] Changed encoder configuration example to bcrypt
| * | Merge branch '2.7' into 2.8Nicolas Grekas2016-11-031-2/+2
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: CS fixes Remove trailing space CS: apply rules [Yaml] Clean some messages + add test case [Form] Fix UrlType transforms valid protocols [SecurityBundle] Changed encoder configuration example to bcrypt
* | | Merge branch '2.8' into 3.1v3.1.6Fabien Potencier2016-10-052-1/+12
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [DependencyInjection] Add missing PHPDoc type Correct a typo in the ReflectionExtractor's description [HttpFoundation] JSONP callback validation [Console] Improved the explanation of the hasOption() method Uniformize exception vars according to our CS add missing use statement bug #18042 [Security] $attributes can be anything, but RoleVoter assumes strings
| * | Merge branch '2.7' into 2.8v2.8.13Fabien Potencier2016-10-052-1/+12
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | * 2.7: [HttpFoundation] JSONP callback validation [Console] Improved the explanation of the hasOption() method add missing use statement bug #18042 [Security] $attributes can be anything, but RoleVoter assumes strings
| | * bug #19725 [Security] $attributes can be anything, but RoleVoter assumes ↵v2.7.20Fabien Potencier2016-10-052-1/+12
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | strings (Jonatan Männchen) This PR was merged into the 2.7 branch. Discussion ---------- [Security] $attributes can be anything, but RoleVoter assumes strings | Q | A | ------------- | --- | Branch? | 2.7 | Bug fix? | yes | New feature? | no | BC breaks? | yes | Deprecations? | no | Tests pass? | yes | Fixed tickets | #18042 | License | MIT | Doc PR | reference to the documentation PR, if any Commits ------- ad3ac95 bug #18042 [Security] $attributes can be anything, but RoleVoter assumes strings
| | | * bug #18042 [Security] $attributes can be anything, but RoleVoter assumes stringsJonatan Männchen2016-09-212-1/+12
| | | |
* | | | Merge branch '2.8' into 3.1v3.1.5Fabien Potencier2016-09-242-0/+142
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: expectedException expects FQCN Fixed expectedException annotations Security and validators messages translation to Latvian [Form] FormView->isRendered() remove dead code and simplify the flow
| * | | Merge branch '2.7' into 2.8v2.8.12Fabien Potencier2016-09-242-0/+142
| |\ \ \ | | |/ / | | | | | | | | | | | | | | | | | | | | * 2.7: Fixed expectedException annotations Security and validators messages translation to Latvian [Form] FormView->isRendered() remove dead code and simplify the flow
| | * | Security and validators messages translation to Latvianv2.7.19Rikijs Murgs2016-09-222-0/+142
| | |/
* | | Merge branch '2.8' into 3.1Fabien Potencier2016-09-121-2/+10
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [travis/appveyor] Wire simple-phpunit [Console] fixed PHP7 Errors are now handled and converted to Exceptions Fix #19721 Fix translation:update command count bumped Symfony version to 2.8.12 updated VERSION for 2.8.11 updated CHANGELOG for 2.8.11 bumped Symfony version to 2.7.19 updated VERSION for 2.7.18 update CONTRIBUTORS for 2.7.18 updated CHANGELOG for 2.7.18 [Security] Optimize RoleHierarchy's buildRoleMap method
| * | Merge branch '2.7' into 2.8Fabien Potencier2016-09-121-2/+10
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [travis/appveyor] Wire simple-phpunit [Console] fixed PHP7 Errors are now handled and converted to Exceptions Fix #19721 bumped Symfony version to 2.7.19 updated VERSION for 2.7.18 update CONTRIBUTORS for 2.7.18 updated CHANGELOG for 2.7.18 [Security] Optimize RoleHierarchy's buildRoleMap method
| | * minor #19868 [Security] Optimize RoleHierarchy's buildRoleMap method (Enleur)v2.7.18Fabien Potencier2016-09-061-2/+10
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was squashed before being merged into the 2.7 branch (closes #19868). Discussion ---------- [Security] Optimize RoleHierarchy's buildRoleMap method | Q | A | ------------- | --- | Branch? | 2.7 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | no | License | MIT | Doc PR | no I have an issue with a large role hierarchy(~150 roles). Optimized it a little bit ![image](https://cloud.githubusercontent.com/assets/858989/18271257/df6c4ba0-7439-11e6-8406-e13bdcefe9ca.png) Commits ------- c3b68b0 [Security] Optimize RoleHierarchy's buildRoleMap method
| | | * [Security] Optimize RoleHierarchy's buildRoleMap methodEnleur2016-09-061-2/+10
| | | |
* | | | Merge branch '2.8' into 3.1Fabien Potencier2016-09-061-0/+1
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [FrameworkBundle] Fix Incorrect line break in exception message (500 debug page) [Security] Added note inside phpdoc. Minor cleanups and improvements [form] lazy trans `post_max_size_message`. [DI] Fix setting synthetic services on ContainerBuilder [ClassLoader] Fix ClassCollectionLoader inlining with declare(strict_types=1)
| * | | minor #19773 [Security] Added note inside phpdoc. (Koc)v2.8.11Fabien Potencier2016-09-061-0/+1
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was squashed before being merged into the 2.8 branch (closes #19773). Discussion ---------- [Security] Added note inside phpdoc. | Q | A | ------------- | --- | Branch? | 2.8 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | - | License | MIT | Doc PR | - Commits ------- c49e462 [Security] Added note inside phpdoc.
| | * | | [Security] Added note inside phpdoc.Konstantin Myakshin2016-09-061-0/+1
| | | | |
* | | | | Merge branch '2.8' into 3.1Nicolas Grekas2016-09-061-1/+1
|\ \ \ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [FrameworkBundle] Check for class existence before is_subclass_of Update GroupSequence.php Code enhancement and cleanup [Form] Fix transformer tests after the ICU update [DI] Add anti-regression test Revert "minor #19689 [DI] Cleanup array_key_exists (ro0NL)" bumped Symfony version to 2.8.11 updated VERSION for 2.8.10 updated CHANGELOG for 2.8.10 [BrowserKit] Fix cookie expiration on 32 bit systems bumped Symfony version to 2.7.18 updated VERSION for 2.7.17 update CONTRIBUTORS for 2.7.17 updated CHANGELOG for 2.7.17 Update misleading comment about RFC4627
| * | | | Merge branch '2.7' into 2.8Nicolas Grekas2016-09-061-1/+1
| |\ \ \ \ | | |/ / / | |/| / / | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [FrameworkBundle] Check for class existence before is_subclass_of Update GroupSequence.php Code enhancement and cleanup [DI] Add anti-regression test Revert "minor #19689 [DI] Cleanup array_key_exists (ro0NL)" [BrowserKit] Fix cookie expiration on 32 bit systems bumped Symfony version to 2.7.18 updated VERSION for 2.7.17 update CONTRIBUTORS for 2.7.17 updated CHANGELOG for 2.7.17 Update misleading comment about RFC4627
| | * | Code enhancement and cleanupYonel Ceruto2016-09-061-1/+1
| | | |
* | | | Merge branch '2.8' into 3.1v3.1.4Nicolas Grekas2016-08-268-12/+18
|\ \ \ \ | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [Validator][GroupSequence] fixed GroupSequence validation ignores PropertyMetadata of parent classes [FrameworkBundle][Security] Remove useless mocks [DoctrineBridge] Enhance exception message in EntityUserProvider added friendly exception when constraint validator does not exist or it is not enabled remove duplicate instruction [FrameworkBundle] Remove TranslatorBagInterface check [FrameworkBundle] Remove duplicated code in RouterDebugCommand [Validator] fixed duplicate constraints with parent class interfaces SecurityBundle:BasicAuthenticationListener: removed a default argument on getting a header value
| * | | Merge branch '2.7' into 2.8v2.8.10Nicolas Grekas2016-08-268-12/+18
| |\ \ \ | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [Validator][GroupSequence] fixed GroupSequence validation ignores PropertyMetadata of parent classes [FrameworkBundle][Security] Remove useless mocks [DoctrineBridge] Enhance exception message in EntityUserProvider added friendly exception when constraint validator does not exist or it is not enabled remove duplicate instruction [FrameworkBundle] Remove TranslatorBagInterface check [FrameworkBundle] Remove duplicated code in RouterDebugCommand [Validator] fixed duplicate constraints with parent class interfaces SecurityBundle:BasicAuthenticationListener: removed a default argument on getting a header value
| | * | minor #19736 [FrameworkBundle][Security] Remove useless mocks (Ener-Getick)v2.7.17Fabien Potencier2016-08-257-11/+17
| | |\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was merged into the 2.7 branch. Discussion ---------- [FrameworkBundle][Security] Remove useless mocks | Q | A | ------------- | --- | Branch? | 2.7 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | | License | MIT | Doc PR | Removes mocks causing issues in https://github.com/symfony/symfony/pull/19734. Commits ------- fcd3345 [FrameworkBundle][Security] Remove useless mocks
| | | * | [FrameworkBundle][Security] Remove useless mocksEner-Getick2016-08-257-11/+17
| | | | |
| | * | | SecurityBundle:BasicAuthenticationListener: removed a default argument on ↵Dawid Nowak2016-08-011-1/+1
| | |/ / | | | | | | | | | | | | | | | | | | | | getting a header value it's unnecessary.
| | * | Minor fixesv2.7.16Vyacheslav Pavlov2016-07-301-2/+0
| | | |
| | * | Fixed bugs in names of classes and methods.Vyacheslav Pavlov2016-07-261-1/+1
| | | |
* | | | Merge branch '3.0' into 3.1v3.1.3Nicolas Grekas2016-07-171-1/+7
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: [VarDumper] Fix dumping jsons casted as arrays PassConfig::getMergePass is not an array Revert "bug #19114 [HttpKernel] Dont close the reponse stream in debug (nicolas-grekas)" Fix the retrieval of the last username when using forwarding [Yaml] Fix PHPDoc of the Yaml class [HttpFoundation] Add OPTIONS and TRACE to the list of safe methods Update getAbsoluteUri() for query string uris Conflicts: src/Symfony/Component/Yaml/Yaml.php
| * \ \ \ Merge branch '2.8' into 3.0v3.0.9origin/3.0Nicolas Grekas2016-07-171-1/+7
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [VarDumper] Fix dumping jsons casted as arrays PassConfig::getMergePass is not an array Revert "bug #19114 [HttpKernel] Dont close the reponse stream in debug (nicolas-grekas)" Fix the retrieval of the last username when using forwarding [Yaml] Fix PHPDoc of the Yaml class [HttpFoundation] Add OPTIONS and TRACE to the list of safe methods Update getAbsoluteUri() for query string uris
| | * | | Merge branch '2.7' into 2.8v2.8.9Nicolas Grekas2016-07-171-1/+7
| | |\ \ \ | | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [VarDumper] Fix dumping jsons casted as arrays PassConfig::getMergePass is not an array Revert "bug #19114 [HttpKernel] Dont close the reponse stream in debug (nicolas-grekas)" Fix the retrieval of the last username when using forwarding [Yaml] Fix PHPDoc of the Yaml class [HttpFoundation] Add OPTIONS and TRACE to the list of safe methods Update getAbsoluteUri() for query string uris
| | | * | Fix the retrieval of the last username when using forwardingChristophe Coevoet2016-07-111-1/+7
| | | | |
* | | | | Merge branch '3.0' into 3.1Nicolas Grekas2016-07-101-0/+79
|\ \ \ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: [HttpKernel] fixed internal subrequests having an if-modified-since-header [Security] Fix deprecated usage of DigestAuthenticationEntryPoint::getKey() in DigestAuthenticationListener [Validator] Added additional MasterCard range to the CardSchemeValidator Make the exception message more clear. [Form] fixed bug - name in ButtonBuilder [DoctrineBridge] added missing error code for constraint. [ClassLoader] Fix declared classes being computed when not needed [varDumper] Fix missing usage of ExceptionCaster::$traceArgs
| * | | | Merge branch '2.8' into 3.0Nicolas Grekas2016-07-101-0/+79
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [HttpKernel] fixed internal subrequests having an if-modified-since-header [Security] Fix deprecated usage of DigestAuthenticationEntryPoint::getKey() in DigestAuthenticationListener [Validator] Added additional MasterCard range to the CardSchemeValidator Make the exception message more clear. [Form] fixed bug - name in ButtonBuilder [DoctrineBridge] added missing error code for constraint. [ClassLoader] Fix declared classes being computed when not needed [varDumper] Fix missing usage of ExceptionCaster::$traceArgs Conflicts: src/Symfony/Bridge/Doctrine/Validator/Constraints/UniqueEntityValidator.php src/Symfony/Component/ClassLoader/ClassCollectionLoader.php
| | * | | [Security] Fix deprecated usage of DigestAuthenticationEntryPoint::getKey() ↵Maxime STEINHAUSSER2016-07-082-1/+80
| | | | | | | | | | | | | | | | | | | | in DigestAuthenticationListener
* | | | | Merge branch '3.0' into 3.1Nicolas Grekas2016-07-056-13/+1
|\ \ \ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: [VarDumper] Fix indentation trimming in ExceptionCaster removed @since Remove and change unrelevant comments in Validator and Security components. [Validator] add missing interface use statement for phpdoc block return type. [Validator] UuidValidator must accept a Uuid constraint. [Validator] make UuidValidator class formatting consistent.
| * | | | Merge branch '2.8' into 3.0Nicolas Grekas2016-07-056-13/+1
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [VarDumper] Fix indentation trimming in ExceptionCaster removed @since Remove and change unrelevant comments in Validator and Security components. [Validator] UuidValidator must accept a Uuid constraint. [Validator] make UuidValidator class formatting consistent. Conflicts: src/Symfony/Bridge/Doctrine/Tests/Validator/Constraints/LegacyUniqueEntityValidatorLegacyApiTest.php src/Symfony/Component/Form/Extension/Csrf/CsrfProvider/CsrfProviderAdapter.php src/Symfony/Component/Form/Extension/Csrf/CsrfProvider/CsrfTokenManagerAdapter.php src/Symfony/Component/Form/Tests/Extension/Validator/Constraints/LegacyFormValidatorLegacyApiTest.php src/Symfony/Component/Security/Core/Tests/Validator/Constraints/LegacyUserPasswordValidatorTest.php src/Symfony/Component/Validator/Constraints/UuidValidator.php src/Symfony/Component/Validator/Context/LegacyExecutionContext.php src/Symfony/Component/Validator/Context/LegacyExecutionContextFactory.php src/Symfony/Component/Validator/Tests/Fixtures/StubGlobalExecutionContext.php src/Symfony/Component/Validator/Tests/Validator/AbstractLegacyApiTest.php src/Symfony/Component/Validator/Tests/Validator/AbstractTest.php src/Symfony/Component/Validator/Validator/LegacyValidator.php
| | * | | Merge branch '2.7' into 2.8Nicolas Grekas2016-07-057-15/+1
| | |\ \ \ | | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: removed @since Remove and change unrelevant comments in Validator and Security components. [Validator] UuidValidator must accept a Uuid constraint. [Validator] make UuidValidator class formatting consistent.
| | | * | removed @sinceFabien Potencier2016-07-047-14/+0
| | | | |
| | | * | Remove and change unrelevant comments in Validator and Security components.Hugo Hamon2016-07-011-1/+1
| | | | |
* | | | | [Security] fixed DebugAccessDecisionManager::setVoters()Jules Pietri2016-07-031-1/+1
| | | | |
* | | | | Merge branch '3.0' into 3.1Nicolas Grekas2016-07-013-68/+233
|\ \ \ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: [travis] Fix deps=low/high builds fixed CS skip test with current phpunit bridge Fix for #19183 to add support for new PHP MongoDB extension in sessions. [Console] Fix for block() padding formatting after #19189 [Security][Guard] check if session exist before using it bumped Symfony version to 3.0.9 updated VERSION for 3.0.8 updated CHANGELOG for 3.0.8 bumped Symfony version to 2.8.9 updated VERSION for 2.8.8 updated CHANGELOG for 2.8.8 bumped Symfony version to 2.7.16 updated VERSION for 2.7.15 update CONTRIBUTORS for 2.7.15 updated CHANGELOG for 2.7.15 Fix some lowest deps Fixed typos in the expectedException annotations Conflicts: src/Symfony/Component/HttpKernel/Kernel.php src/Symfony/Component/Security/Guard/Authenticator/AbstractFormLoginAuthenticator.php
| * | | | Merge branch '2.8' into 3.0Nicolas Grekas2016-07-012-2/+222
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [travis] Fix deps=low/high builds fixed CS skip test with current phpunit bridge Fix for #19183 to add support for new PHP MongoDB extension in sessions. [Console] Fix for block() padding formatting after #19189 [Security][Guard] check if session exist before using it bumped Symfony version to 2.8.9 updated VERSION for 2.8.8 updated CHANGELOG for 2.8.8 bumped Symfony version to 2.7.16 updated VERSION for 2.7.15 update CONTRIBUTORS for 2.7.15 updated CHANGELOG for 2.7.15 Fix some lowest deps Fixed typos in the expectedException annotations Conflicts: CHANGELOG-2.7.md CHANGELOG-3.0.md src/Symfony/Bundle/FrameworkBundle/composer.json src/Symfony/Component/HttpFoundation/Tests/Session/Storage/Handler/MongoDbSessionHandlerTest.php src/Symfony/Component/HttpKernel/Kernel.php src/Symfony/Component/HttpKernel/composer.json src/Symfony/Component/Yaml/Tests/ParserTest.php
| | * | | [Security][Guard] check if session exist before using itJean Pasdeloup2016-06-302-2/+222
| | | | |
* | | | | bug #18934 Fixed some issues of the AccessDecisionManager profiler ↵v3.1.2Fabien Potencier2016-06-291-7/+13
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (javiereguiluz) This PR was squashed before being merged into the 3.1 branch (closes #18934). Discussion ---------- Fixed some issues of the AccessDecisionManager profiler | Q | A | ------------- | --- | Branch? | 3.1 | Bug fix? | yes | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | #19022 https://github.com/symfony/symfony-standard/issues/968 https://github.com/schmittjoh/JMSSecurityExtraBundle/issues/207 | License | MIT | Doc PR | - Commits ------- 082f1b5 Fixed some issues of the AccessDecisionManager profiler
| * | | | | Fixed some issues of the AccessDecisionManager profilerJavier Eguiluz2016-06-291-7/+13
| | | | | |
* | | | | | Merge branch '3.0' into 3.1Fabien Potencier2016-06-297-7/+7
|\ \ \ \ \ \ | | |/ / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: fixed CS fixed CS fixed form tests [Console] Fix formatting of SymfonyStyle::comment() [Form] fix post max size translation type extension for >= 2.8 removed dots at the end of @param and @return fixed typo
| * | | | | Merge branch '2.8' into 3.0v3.0.8Fabien Potencier2016-06-297-7/+7
| |\ \ \ \ \ | | | |/ / / | | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: fixed CS fixed form tests [Console] Fix formatting of SymfonyStyle::comment() [Form] fix post max size translation type extension for >= 2.8 removed dots at the end of @param and @return fixed typo
| | * | | | Merge branch '2.7' into 2.8v2.8.8Fabien Potencier2016-06-297-7/+7
| | |\ \ \ \ | | | | |/ / | | | |/| | | | | | | | | | | | | | | | | | | | * 2.7: removed dots at the end of @param and @return fixed typo
| | | * | | removed dots at the end of @param and @returnv2.7.15Fabien Potencier2016-06-288-8/+8
| | | | | |
| | | * | | `@throws` annotations should go after `@return`v2.7.14Nicolas Grekas2016-06-065-18/+18
| | | | | |
* | | | | | bug #19204 [Security] Allow LDAP loadUser override (tucksaun)Fabien Potencier2016-06-291-1/+1
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was merged into the 3.1 branch. Discussion ---------- [Security] Allow LDAP loadUser override | Q | A | ------------- | --- | Branch? | 3.1 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | - | License | MIT | Doc PR | - Back to 3.0, one could extend `Symfony\Component\Security\Core\User\LdapUserProvider` and override how User objects are created. Among several improvements, #17560 changed `loadUser` signature but also visibility to `private` which disallow any overriding. Even if the signature BC break is legitimate, we should still be able to override this method IMHO, which is not possible with a private visibility. This PRs introduces a `protected` visibility to allow again overriding. Commits ------- ae99aa8 [Security] Allow LDAP loadUser override
| * | | | | | [Security] Allow LDAP loadUser overrideTugdual Saunier2016-06-281-1/+1
| | |_|_|/ / | |/| | | |
* | | | | | Merge branch '3.0' into 3.1Fabien Potencier2016-06-281-5/+9
|\ \ \ \ \ \ | |/ / / / / |/| / / / / | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: [CS] Respect PSR2 4.2 [Form] fix `empty_data` option in expanded `ChoiceType` [Console] removed unneeded private methods [Security] [Guard] Improve comment with working example sync min email validator version [TwigBridge] Fix inconsistency in LintCommand help explicitly forbid e-mail validator 2.0 or higher Fixed SymfonyQuestionHelper multi-choice with defaults [DoctrineBridge] Don't use object IDs in DoctrineChoiceLoader when passing a value closure Differentiate between the first time a progress bar is displayed and subsequent times finished previous commit No more exception for malformed input name fix post_max_size_message translation [Process] Fix pipes cleaning on Windows Avoid phpunit 5.4 warnings on getMock [Form] Add exception to FormRenderer about non-unique block names [Form] Consider a violation even if the form is not submitted
| * | | | Merge branch '2.8' into 3.0Fabien Potencier2016-06-281-5/+9
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [CS] Respect PSR2 4.2 [Form] fix `empty_data` option in expanded `ChoiceType` [Console] removed unneeded private methods [Security] [Guard] Improve comment with working example sync min email validator version [TwigBridge] Fix inconsistency in LintCommand help explicitly forbid e-mail validator 2.0 or higher Fixed SymfonyQuestionHelper multi-choice with defaults [DoctrineBridge] Don't use object IDs in DoctrineChoiceLoader when passing a value closure Differentiate between the first time a progress bar is displayed and subsequent times finished previous commit No more exception for malformed input name fix post_max_size_message translation [Process] Fix pipes cleaning on Windows Avoid phpunit 5.4 warnings on getMock [Form] Add exception to FormRenderer about non-unique block names [Form] Consider a violation even if the form is not submitted
| | * | | [Security] [Guard] Improve comment with working exampleJean Pasdeloup2016-06-231-5/+9
| | | | |
* | | | | fixed CSFabien Potencier2016-06-211-1/+1
| | | | |
* | | | | minor #18945 [Security] LdapUserProvider: add missing argument type doc (xabbuh)v3.1.1Nicolas Grekas2016-06-031-0/+1
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was merged into the 3.1 branch. Discussion ---------- [Security] LdapUserProvider: add missing argument type doc | Q | A | ------------- | --- | Branch? | 3.1 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | | License | MIT | Doc PR | Commits ------- bff9c36 LdapUserProvider: add missing argument type doc
| * | | | | LdapUserProvider: add missing argument type docChristian Flothmann2016-06-011-0/+1
| | | | | |
* | | | | | [Security] Fix DebugAccessDecisionManager when object is not a scalarRomain Neutron2016-06-022-1/+51
|/ / / / /
* | | | | [Ldap] Fixed issue with Entry password attribute containing array of values ↵v3.1.0-RC1v3.1.0Charles Sarrazin2016-05-262-5/+175
| | | | | | | | | | | | | | | | | | | | and made password attribute configurable
* | | | | Merge branch '3.0'v3.1.0-BETA1Nicolas Grekas2016-05-128-3/+113
|\ \ \ \ \ | |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 3.0: (31 commits) Drop hirak/prestissimo [MonologBridge] Uninstallable together with symfony/http-kernel in 3.0.6 bumped Symfony version to 3.0.7 updated VERSION for 3.0.6 updated CHANGELOG for 3.0.6 bumped Symfony version to 2.8.7 updated VERSION for 2.8.6 updated CHANGELOG for 2.8.6 bumped Symfony version to 2.7.14 updated VERSION for 2.7.13 updated CHANGELOG for 2.7.13 bumped Symfony version to 2.3.42 [Debug] Fix fatal error handlers on PHP 7 updated VERSION for 2.3.41 update CONTRIBUTORS for 2.3.41 updated CHANGELOG for 2.3.41 fixed bad merge Fixed issue with blank password with Ldap limited the maximum length of a submitted username [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param ... Conflicts: src/Symfony/Component/DependencyInjection/Compiler/AutowirePass.php src/Symfony/Component/DependencyInjection/Tests/Compiler/AutowirePassTest.php src/Symfony/Component/HttpKernel/Kernel.php
| * | | | Merge branch '2.8' into 3.0v3.0.7v3.0.6Fabien Potencier2016-05-092-1/+22
| |\ \ \ \ | | |/ / / | | | | | | | | | | | | | | | * 2.8: Fixed issue with blank password with Ldap
| | * | | security #18736 Fixed issue with blank password with Ldap (csarrazi)v2.8.7v2.8.6Fabien Potencier2016-05-092-1/+22
| | |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This PR was merged into the 2.8 branch. Discussion ---------- Fixed issue with blank password with Ldap | Q | A | ------------- | --- | Branch? | 1.8 | Bug fix? | no | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | n/a | License | MIT | Doc PR | n/a Commits ------- c7d9c62 Fixed issue with blank password with Ldap
| | | * | | Fixed issue with blank password with LdapCharles Sarrazin2016-05-092-1/+22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The bind operation of LDAP, as described in RFC 4513, provides a method which allows for authentication of users. For the Simple Authentication Method a user may use the anonymous authentication mechanism, the unauthenticated authentication mechanism, or the name/password authentication mechanism. The unauthenticated authentication mechanism is used when a client who desires to establish an anonymous authorization state passes a non-zero length distinguished name and a zero length password. Most LDAP servers either can be configured to allow this mechanism or allow it by default. _Web-based applications which perform the simple bind operation with the client's credentials are at risk when an anonymous authorization state is established. This can occur when the web-based application passes a distinguished name and a zero length password to the LDAP server._ Thus, misconfiguring a server with simple bind can trick Symfony into thinking the username/password tuple as valid, potentially leading to unauthorized access.
| * | | | | Merge branch '2.8' into 3.0Fabien Potencier2016-05-094-0/+89
| |\ \ \ \ \ | | |/ / / / | | | | | | | | | | | | | | | | | | * 2.8: limited the maximum length of a submitted username
| | * | | | Merge branch '2.7' into 2.8Fabien Potencier2016-05-095-0/+90
| | |\ \ \ \ | | | | |/ / | | | |/| | | | | | | | | | | | | | * 2.7: limited the maximum length of a submitted username
| | | * | | Merge branch '2.3' into 2.7v2.7.13Fabien Potencier2016-05-095-0/+90
| | | |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.3: limited the maximum length of a submitted username
| | | | * | | limited the maximum length of a submitted usernamev2.3.42v2.3.41origin/2.3Fabien Potencier2016-05-093-0/+84
| | | | | | |
| * | | | | | Merge branch '2.8' into 3.0Fabien Potencier2016-05-092-2/+2
| |\ \ \ \ \ \ | | |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.8: [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param prevent calling get() for service_container service call get() after the container was compiled Fixed readme of OptionsResolver top-level anonymous services must be public [DependencyInjection] Suggest ExpressionLanguage in composer.json added a conflict between Monolog bridge 2.8 and HTTP Kernel 3.0+
| | * | | | | Merge branch '2.7' into 2.8Fabien Potencier2016-05-092-2/+2
| | |\ \ \ \ \ | | | |/ / / / | | | | | / / | | | |_|/ / | | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.7: [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param prevent calling get() for service_container service call get() after the container was compiled Fixed readme of OptionsResolver [DependencyInjection] Suggest ExpressionLanguage in composer.json
| | | * | | Merge branch '2.3' into 2.7Fabien Potencier2016-05-092-2/+2
| | | |\ \ \ | | | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 2.3: [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param call get() after the container was compiled Fixed readme of OptionsResolver
| | | | * | minor #18727 [2.3][Component/Security] Fixed phpdoc in AnonymousToken ↵Fabien Potencier2016-05-092-2/+2
| | | | |\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | constructor for user param (eriwin) This PR was squashed before being merged into the 2.3 branch (closes #18727). Discussion ---------- [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param | Q | A | ------------- | --- | Branch? | 2.3 | Bug fix? | yes, phpdoc one | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | - | License | MIT | Doc PR | - Updated phpdoc of AnonymousToken $user param from string to string|object since an object is allowed to in the parent AbstractToken: https://github.com/symfony/symfony/blob/2.3/src/Symfony/Component/Security/Core/Authentication/Token/AbstractToken.php#L91 Commits ------- b1c60b4 [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for user param
| | | | | * | [2.3][Component/Security] Fixed phpdoc in AnonymousToken constructor for ↵Erik van Wingerden2016-05-092-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | user param
generated by cgit v1.1 at 2025-05-12 23:16:21 +0000