summaryrefslogtreecommitdiffstats
path: root/Http/Firewall
Commit message (Expand)AuthorAgeFilesLines
* [CS Fix] Consistent coding-style of concatenation operator usageDariusz Górecki2013-04-021-1/+1
* merged branch adrienbrault/security-feature (PR #4776)Fabien Potencier2013-03-231-1/+9
|\
| * [Security] Add an option to disable the hasPreviousSession() check in Abstrac...Adrien BRAULT2012-07-091-1/+2
* | Merge branch '2.1' into 2.2Fabien Potencier2013-02-111-2/+4
|\ \
| * | [Security] fixed session creation on login (closes #7011)Adrien Samson2013-02-071-2/+4
* | | Merge branch '2.1' into 2.2Fabien Potencier2013-02-071-2/+4
|\ \ \ | |/ /
| * | [Security] fixed session creation when none is needed (closes #6917)Fabien Potencier2013-02-041-2/+4
* | | merged branch Seldaek/psr3 (PR #6628)Fabien Potencier2013-01-1013-17/+17
|\ \ \
| * | | Remove use of deprecated HttpKernel LoggerInterfaceJordi Boggiano2013-01-0913-13/+13
| * | | [Monolog] Mark old non-PSR3 methods as deprecatedJordi Boggiano2013-01-093-4/+4
* | | | [Security] Removed `get/setExtraInformation`, added `get/set(Token|User)`Alexander2013-01-071-1/+1
* | | | [Security] Fix InsufficientAuthenticationException constructor callsAlexander2013-01-071-1/+3
|/ / /
* | | Fixed most of the docblocks/unused namespacesFlorin Patan2012-12-196-1/+22
* | | Merge branch '2.1'Fabien Potencier2012-12-111-0/+1
|\ \ \ | |/ /
| * | Merge branch '2.0' into 2.1Fabien Potencier2012-12-111-0/+1
| |\ \
| | * | fixed CSFabien Potencier2012-12-111-0/+1
* | | | Merge branch '2.1'Fabien Potencier2012-11-291-6/+7
|\ \ \ \ | |/ / /
| * | | Merge branch '2.0' into 2.1v2.1.4Fabien Potencier2012-11-291-6/+7
| |\ \ \ | | |/ /
| | * | [Security] remove escape charters from username provided by Digest DigestAuth...v2.0.19Sebastiaan Stok2012-11-151-1/+1
| | * | [Security] Fixed digest authenticationVincent Simonin2012-11-151-1/+1
| | * | [Security] Fixed digest authenticationVincent Simonin2012-11-151-5/+6
* | | | merged branch acasademont/tweak_userform_security_listener (PR #5824)Fabien Potencier2012-10-281-11/+8
|\ \ \ \
| * | | | [Security] Tweak UsernamePasswordFormAuthenticationListenerAlbert Casademont2012-10-231-11/+8
* | | | | Merge branch '2.1'Fabien Potencier2012-10-241-1/+0
|\ \ \ \ \ | |/ / / / |/| / / / | |/ / /
| * | | Code cleanupv2.1.3Mario A. Alvarez Garcia2012-10-221-1/+0
* | | | Merge branch '2.1'Fabien Potencier2012-10-021-1/+1
|\ \ \ \ | |/ / /
| * | | Merge branch '2.0' into 2.1Fabien Potencier2012-10-021-1/+1
| |\ \ \ | | |/ /
| | * | fixed undefined variablev2.0.18James Michael DuPont2012-09-281-1/+1
| | * | avoid fatal error on invalid sessionv2.0.17Kris Wallsmith2012-08-071-8/+15
| | * | fixed CS (mainly method signatures)v2.0.16Fabien Potencier2012-07-093-3/+3
* | | | Update src/Symfony/Component/Security/Http/Firewall/UsernamePasswordFormAuthe...nervo2012-09-231-1/+1
|/ / /
* | | merged 2.0Fabien Potencier2012-08-101-8/+15
* | | merged branch KaipiYann/Fix-DocBlock-attemptAuthentication (PR #4996)Fabien Potencier2012-07-211-1/+1
|\ \ \
| * | | [Security] Fix DocBlock of attemptAuthenticationKaipi Yann2012-07-201-1/+1
* | | | [Security] Extract default logout success handling logicAlexander2012-07-141-11/+5
* | | | ensured that an exception is always converted to an error response (and that ...Fabien Potencier2012-07-131-1/+0
* | | | [Security] made sure that we always replace the security access denied except...Fabien Potencier2012-07-131-4/+2
* | | | merged branch asm89/refactor-authentication-success-handling (PR #4599)Fabien Potencier2012-07-092-77/+16
|\ \ \ \
| * | | | [Security] Fix regression after rebase. Target url should be firewall dependentAlexander2012-07-081-1/+1
| * | | | [Security] Add note to CHANGELOG about refactored authentication failure/succ...Alexander2012-07-081-5/+15
| * | | | [Security] Move default authentication failure handling strategy to seperate ...Alexander2012-07-082-35/+5
| * | | | [Security] Move default authentication success handling strategy to seperate ...Alexander2012-07-082-46/+5
| | |_|/ | |/| |
* | | | fixed CSFabien Potencier2012-07-093-3/+3
|/ / /
* | | [Security] Fix typo in docblockAdrien Brault2012-07-071-1/+1
|/ /
* | [Security] fixed automatic registration of the response listener when creatin...Fabien Potencier2012-07-061-4/+6
* | merged branch uwej711/security_target_path_master (PR #4409)Fabien Potencier2012-07-022-4/+6
|\ \
| * | Make the session entry for the target url firewall dependent.Uwe Jäger2012-05-252-4/+6
* | | merged 2.0Fabien Potencier2012-06-201-1/+1
|\ \ \ | | |/ | |/|
| * | tweaked the previous commitFabien Potencier2012-06-161-1/+1
| * | [Security] Only redirect to urls called with http method GETUwe Jäger2012-06-141-1/+1
* | | [Security] Check post_only option and request methodHenrik Bjørnskov2012-06-091-0/+12
| |/ |/|
* | merged 2.0Fabien Potencier2012-05-211-2/+2
|\ \ | |/
| * merged branch kepten/ticket_1813 (PR #3551)v2.0.15Fabien Potencier2012-05-211-2/+2
| |\
| | * [HttpFoundation] HTTP Basic authentication is broken with PHP as cgi/fastCGI ...kepten2012-04-201-2/+2
| * | fixed CSFabien Potencier2012-05-182-11/+11
| * | fixed phpdoc @param alignmentv2.0.14Fabien Potencier2012-05-152-10/+10
| * | use SecurityContextInterface instead of SecurityContextv2.0.13Pierre Minnieur2012-03-092-5/+5
| |/
| * fixed CSv2.0.10Fabien Potencier2012-01-171-1/+1
* | fixed CSFabien Potencier2012-05-182-12/+12
* | fixed phpdoc @param alignmentFabien Potencier2012-05-152-11/+11
* | [Security] fixed English grammar in exception messageDouglas Greenshields2012-05-011-1/+1
* | fixed CS (missing or misplaced license blocks)Eriksen Costa2012-04-021-9/+9
* | updated license blocksEriksen Costa2012-03-311-3/+3
* | fixed CSFabien Potencier2012-03-231-2/+2
* | [Security] Log file/line that triggered the AccessDeniedExceptionJordi Boggiano2012-03-231-2/+2
* | [SecurityBundle] Allow switching to the user that is already impersonated (fi...Andreas Hucks2012-03-151-6/+10
* | fixed docblockPierre Minnieur2012-03-071-1/+1
* | use SecurityContextInterface instead of SecurityContextPierre Minnieur2012-03-071-2/+2
* | use SecurityContextInterface instead of SecurityContextPierre Minnieur2012-03-061-2/+2
* | merged branch jmikola/logout-csrf (PR #3007)Fabien Potencier2012-03-052-15/+43
|\ \
| * | [Security] Use LogoutException for invalid CSRF token in LogoutListenerJeremy Mikola2012-02-142-2/+11
| * | [Security] Allow LogoutListener to validate CSRF tokensJeremy Mikola2012-02-141-10/+29
| * | [Security] Refactor LogoutListener constructor to take optionsJeremy Mikola2012-02-141-9/+9
* | | [Security] added AccessMapInterfaceKris Wallsmith2012-02-152-4/+4
|/ /
* | Authentication(Success|Failure)Handler can now return nullOlivier Dolbeau2012-01-241-2/+6
* | [Security] made the logout path check configurableFabien Potencier2011-12-231-1/+18
* | merged 2.0Fabien Potencier2011-12-181-1/+1
|\ \ | |/
| * fixed CSFabien Potencier2011-12-181-1/+1
* | merged 2.0Fabien Potencier2011-12-131-1/+1
|\ \ | |/
| * [DoctrineBridge] fixed some CSFabien Potencier2011-12-132-1/+2
* | added check for invalid user providersKris Wallsmith2011-12-051-0/+7
* | merged branch jmikola/2.0-LoaderResolverInterface (PR #2785)Fabien Potencier2011-12-051-0/+4
|\ \ | |/
| * check for session before trying to authentication detailsMatt Lehner2011-12-021-0/+4
* | removed unused use statementsFabien Potencier2011-11-241-1/+0
* | merged 2.0Fabien Potencier2011-11-244-4/+0
|\ \ | |/
| * removed unused use statementsFabien Potencier2011-11-244-4/+0
* | merged branch snc/login-referer (PR #2518)Fabien Potencier2011-11-171-1/+1
|\ \
| * | Redirect to default_target_path if use_referer is true and the referer is the...Henrik Westphal2011-10-301-1/+1
* | | merged branch snc/issue-1798-sf21 (PR #2598)Fabien Potencier2011-11-101-2/+1
|\ \ \
| * | | Remove security token if user was deleted, is disabled or locked to prevent i...H. Westphal2011-11-101-0/+6
* | | | Merge branch '2.0'Fabien Potencier2011-11-101-0/+8
|\ \ \ \ | |/ / / |/| | / | | |/ | |/|
| * | Remove only the security token instead of the session cookie.H. Westphal2011-11-011-7/+6
| * | Clear session cookie if user was deleted, is disabled or locked to prevent in...H. Westphal2011-10-311-1/+10
* | | merged branch dpb587/patch-sectok (PR #2414)Fabien Potencier2011-11-071-7/+7
|\ \ \ | |_|/ |/| |
| * | [Security] Check for request's session before attempting writes.Danny Berger2011-10-251-1/+3
| * | [Security] Support removing tokens from a session.Danny Berger2011-10-141-9/+7
* | | merged 2.0Fabien Potencier2011-10-293-6/+0
|\ \ \ | | |/ | |/|
| * | removed unused use statementsFabien Potencier2011-10-293-6/+0
| |/
* | Removed redundant "@return void"-sHelmer Aaviksoo2011-10-071-1/+0
|/
* merged branch helmer/target_path (PR #2228)Fabien Potencier2011-09-251-2/+7
generated by cgit v1.1 at 2025-06-01 08:34:14 +0000