-
-
Notifications
You must be signed in to change notification settings - Fork 9.6k
[Security] Method "GuardAuthenticationListener::setSessionAuthenticationStrategy()" does not exist #27577
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Comments
|
Could this be related to #27452? /cc @weaverryan |
|
My fault for sure - I'm working on it :) |
|
See: #27581 |
|
Thanks for testing dev branches @derrabus :) |
…gration (weaverryan) This PR was squashed before being merged into the 2.8 branch (closes #27581). Discussion ---------- Fix bad method call with guard authentication + session migration | Q | A | ------------- | --- | Branch? | 2.8 | Bug fix? | yes | New feature? | no | BC breaks? | no | Deprecations? | no (but there needs to be on master) | Tests pass? | yes | Fixed tickets | #27577 | License | MIT | Doc PR | n/a I messed up #27452 :/. Guard is the one class where the session migration is not on the listener, it's on the handler. The tricky part is that there is only ONE handler (unlike listeners where there is 1 listener per firewall). That means that implementing a session migration strategy that avoids stateless firewalls was a bit more tricky: I could only think to inject a map into `GuardAuthenticationHandler`. On the bright side, this also fixes session migration (not happening) when people call the `authenticateUserAndHandleSuccess()` method directly. On master, we'll need to add a deprecation to make the 3rd argument of `authenticateWithToken()` required - it's optional now for BC. We may also need to re-order the constructor args. I DID test this in a real 2.8 project, to make sure that things were properly wired up. Apologies for not doing that for the other PR. Cheers! Commits ------- 2c0ac93 Fix bad method call with guard authentication + session migration
|
@weaverryan I can confirm that the issue is gone on the 2.8 branch. However, I can still reproduce it on 3.4 although #27581 must have been merged there as well by now. Can you have a look, please? |
|
Wow, that was fast, @chalasr! 3.4 seems to be working now as well. Thanks a lot! |
Uh oh!
There was an error while loading. Please reload this page.
Symfony version(s) affected: 2.8.42-dev, 3.4.12-dev
Description
Applications configuring a guard authenticator exit with an exception after upgrading to the HEAD of the 2.8/3.4 branch.
How to reproduce
Just configure any guard authenticator on a new Symfony project.
Additional context
If you downgrade
symfony/symfonyto 2.8.41/3.4.11, everything's fine again.The text was updated successfully, but these errors were encountered: