symfony
diff --git a/‎src/Symfony/Component/HttpKernel/EventListener/FragmentListener.php
Lines changed: 1 addition & 2 deletions b/‎src/Symfony/Component/HttpKernel/EventListener/FragmentListener.php
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Symfony/Component/HttpKernel/Tests/UriSignerTest.php
Lines changed: 10 additions & 0 deletions b/‎src/Symfony/Component/HttpKernel/Tests/UriSignerTest.php
Lines changed: 10 additions & 0 deletions
diff --git a/‎src/Symfony/Component/HttpKernel/UriSigner.php
Lines changed: 10 additions & 0 deletions b/‎src/Symfony/Component/HttpKernel/UriSigner.php
Lines changed: 10 additions & 0 deletions
@@ -83,8 +83,7 @@ protected function validateRequest(Request $request)
         }
 
         // is the Request signed?
-        // we cannot use $request->getUri() here as we want to work with the original URI (no query string reordering)
-        if ($this->signer->check($request->getSchemeAndHttpHost().$request->getBaseUrl().$request->getPathInfo().(null !== ($qs = $request->server->get('QUERY_STRING')) ? '?'.$qs : ''))) {
+        if ($this->signer->checkRequest($request)) {
             return;
         }
 
 
@@ -12,6 +12,7 @@
 namespace Symfony\Component\HttpKernel\Tests;
 
 use PHPUnit\Framework\TestCase;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpKernel\UriSigner;
 
 class UriSignerTest extends TestCase
@@ -52,6 +53,15 @@ public function testCheckWithDifferentArgSeparator()
         $this->assertTrue($signer->check($signer->sign('http://example.com/foo?foo=bar&baz=bay'
10000
;)));
     }
 
+    public function testCheckWithRequest()
+    {
+        $signer = new UriSigner('foobar');
+
+        $this->assertTrue($signer->checkRequest(Request::create($signer->sign('http://example.com/foo'))));
+        $this->assertTrue($signer->checkRequest(Request::create($signer->sign('http://example.com/foo?foo=bar'))));
+        $this->assertTrue($signer->checkRequest(Request::create($signer->sign('http://example.com/foo?foo=bar&0=integer'))));
+    }
+
     public function testCheckWithDifferentParameter()
     {
         $signer = new UriSigner('foobar', 'qux');
 
@@ -11,6 +11,8 @@
 
 namespace Symfony\Component\HttpKernel;
 
+use Symfony\Component\HttpFoundation\Request;
+
 /**
  * Signs URIs.
  *
@@ -78,6 +80,14 @@ public function check(string $uri)
         return hash_equals($this->computeHash($this->buildUrl($url, $params)), $hash);
     }
 
+    public function checkRequest(Request $request): bool
+    {
+        $qs = ($qs = $request->server->get('QUERY_STRING')) ? '?'.$qs : '';
+
+        // we cannot use $request->getUri() here as we want to work with the original URI (no query string reordering)
+        return $this->check($request->getSchemeAndHttpHost().$request->getBaseUrl().$request->getPathInfo().$qs);
+    }
+
     private function computeHash(string $uri): string
     {
         return base64_encode(hash_hmac('sha256', $uri, $this->secret, true));
Original file line number	Diff line number	Diff line change
`@@ -83,8 +83,7 @@ protected function validateRequest(Request $request)`
`83`	`83`	`}`
`84`	`84`
`85`	`85`	`// is the Request signed?`
`86`		`- // we cannot use $request->getUri() here as we want to work with the original URI (no query string reordering)`
`87`		`- if ($this->signer->check($request->getSchemeAndHttpHost().$request->getBaseUrl().$request->getPathInfo().(null !== ($qs = $request->server->get('QUERY_STRING')) ? '?'.$qs : ''))) {`
	`86`	`+ if ($this->signer->checkRequest($request)) {`
`88`	`87`	`return;`
`89`	`88`	`}`
`90`	`89`