Skip to content

[Security] Add RememberMe Badge to LoginLinkAuthenticator #39584

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
derrabus merged 1 commit into from
Dec 22, 2020
Merged

[Security] Add RememberMe Badge to LoginLinkAuthenticator #39584

derrabus merged 1 commit into from
Dec 22, 2020

Conversation

@jderusse
Copy link
Member

@jderusse jderusse commented Dec 20, 2020
edited by chalasr
Loading

Q A
Branch? 5.2
Bug fix? yes
New feature? no
Deprecations? no
Tickets -
License MIT
Doc PR -

I'm replacing a custom home-made magic link authenticator by the Symfony one, and I missed this behavior. I had to use a EventListener to add the badge to the passeport.

I'm not sure, if the badge were missing on purpose /cc @weaverryan @wouterj

wouterj
wouterj approved these changes Dec 20, 2020
View reviewed changes
Copy link
Member

@wouterj wouterj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 This still keeps all control by the user (as remember me needs to be explicitly enabled on the firewall), but I see no reason not to allow login links to support remembered (if someone decides that for their application).

I think this can be merged as bugfix in 5.2? (given that this class is experimental, login link is extremely new and it doesn't change any behavior unless a user explicitly enabled remember me)

@jderusse jderusse changed the title Add RememberMe Badge to LoginLinkAuthenticator [security] Add RememberMe Badge to LoginLinkAuthenticator Dec 20, 2020
@carsonbot carsonbot changed the title [security] Add RememberMe Badge to LoginLinkAuthenticator [Security] Add RememberMe Badge to LoginLinkAuthenticator Dec 20, 2020
@chalasr chalasr added this to the 5.2 milestone Dec 20, 2020
chalasr
chalasr approved these changes Dec 20, 2020
View reviewed changes
Copy link
Member

@chalasr chalasr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍🏼 as a bugfix on 5.2

@chalasr chalasr added Bug and removed Feature labels Dec 20, 2020
@jderusse jderusse force-pushed the security-rememberme branch from d47ae9a to d38fc4d Compare December 21, 2020 08:54
@jderusse jderusse changed the base branch from 5.x to 5.2 December 21, 2020 08:54
@jderusse
Copy link
Member Author

jderusse commented Dec 21, 2020

rebased

weaverryan
weaverryan approved these changes Dec 22, 2020
View reviewed changes
Copy link
Member

@weaverryan weaverryan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 That's a bug - good catch!

@derrabus
Copy link
Member

derrabus commented Dec 22, 2020

Thank you Jérémy.

@derrabus derrabus merged commit 9e56c00 into symfony:5.2 Dec 22, 2020
@jderusse jderusse deleted the security-rememberme branch December 24, 2020 08:55
@fabpot fabpot mentioned this pull request Jan 27, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@weaverryan weaverryan weaverryan approved these changes

@wouterj wouterj wouterj approved these changes

@OskarStark OskarStark OskarStark approved these changes

@chalasr chalasr chalasr approved these changes

Assignees

No one assigned

Labels

Bug Security Status: Reviewed

Projects

None yet

Milestone

5.2

Development

Successfully merging this pull request may close these issues.

7 participants

@jderusse @derrabus @weaverryan @wouterj @OskarStark @chalasr @carsonbot