Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
bug #36176 [Security] Check if firewall is stateless before checking …
…for session/previous session (koenreiniers) This PR was submitted for the 4.4 branch but it was squashed and merged into the 3.4 branch instead. Discussion ---------- [Security] Check if firewall is stateless before checking for session/previous session | Q | A | ------------- | --- | Branch? | 4.4 <!-- see below --> | Bug fix? | yes | New feature? | no <!-- please update src/**/CHANGELOG.md files --> | Deprecations? | no <!-- please update UPGRADE-*.md and src/**/CHANGELOG.md files --> | Tickets | - <!-- prefix each issue number with "Fix #", if any --> | License | MIT | Doc PR | - For one of our applications we had the issue that the session was always initialized, even for routes behind stateless firewalls. Using the redis session adapter this sometimes lead to exceptions if the connection failed. This change prevents the session from being initialized in the guard authentication handler for stateless firewalls Commits ------- 9bb1230 [Security] Check if firewall is stateless before checking for session/previous session
- Loading branch information