[Security] Add `$tokenSource` argument to `#[IsCsrfTokenValid]` to support reading tokens from the query string or headers#61694

Merged

nicolas-grekas merged 1 commit intosymfony:7.4from

webda2l:feature/iscsrftokenvalid-requestquery

Sep 10, 2025

Commits on Sep 10, 2025

[Security] Add `$tokenSource` argument to `#[IsCsrfTokenValid]` to support reading tokens from the query string or headers

webda2l
authored and
nicolas-grekas
committed