Merge branch '4.4' into 5.0

nicolas-grekas · nicolas-grekas · commit 1ca59bf6f734 · 2020-03-23T13:42:46.000+01:00
* 4.4:
  [Http Foundation] Fix clear cookie samesite
  [Security] Check if firewall is stateless before checking for session/previous session
  [Form] Support customized intl php.ini settings
  [Security] Remember me: allow to set the samesite cookie flag
  [Debug] fix for PHP 7.3.16+/7.4.4+
  [Validator] Backport translations
  [Mailer] Use %d instead of %s for error code in error messages
  [HttpKernel] fix locking for PHP 7.4+
  [Security] Fixed hardcoded value of SODIUM_CRYPTO_PWHASH_MEMLIMIT_INTERACTIVE
  Prevent warning in proc_open()
  [FrameworkBundle] Fix Router Cache
  Fix deprecation messages
diff --git a/RememberMe/AbstractRememberMeServices.php b/RememberMe/AbstractRememberMeServices.php
@@ -39,6 +39,7 @@ abstract class AbstractRememberMeServices implements RememberMeServicesInterface
     protected $options = [
         'secure' => false,
         'httponly' => true,
+        'samesite' => null,
     ];
     private $providerKey;
     private $secret;
@@ -274,7 +275,7 @@ protected function cancelCookie(Request $request)
             $this->logger->debug('Clearing remember-me cookie.', ['name' => $this->options['name']]);
         }
 
-        $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'], $this->options['secure'] ?? $request->isSecure(), $this->options['httponly'], false, $this->options['samesite'] ?? null));
+        $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'], $this->options['secure'] ?? $request->isSecure(), $this->options['httponly'], false, $this->options['samesite']));
     }
 
     /**
diff --git a/RememberMe/PersistentTokenBasedRememberMeServices.php b/RememberMe/PersistentTokenBasedRememberMeServices.php
@@ -86,7 +86,7 @@ protected function processAutoLoginCookie(array $cookieParts, Request $request)
                 $this->options['secure'] ?? $request->isSecure(),
                 $this->options['httponly'],
                 false,
-                $this->options['samesite'] ?? null
+                $this->options['samesite']
             )
         );
 
@@ -121,7 +121,7 @@ protected function onLoginSuccess(Request $request, Response $response, TokenInt
                 $this->options['secure'] ?? $request->isSecure(),
                 $this->options['httponly'],
                 false,
-                $this->options['samesite'] ?? null
+                $this->options['samesite']
             )
         );
     }
diff --git a/RememberMe/TokenBasedRememberMeServices.php b/RememberMe/TokenBasedRememberMeServices.php
@@ -83,7 +83,7 @@ protected function onLoginSuccess(Request $request, Response $response, TokenInt
                 $this->options['secure'] ?? $request->isSecure(),
                 $this->options['httponly'],
                 false,
-                $this->options['samesite'] ?? null
+                $this->options['samesite']
             )
         );
     }

Original file line number	Diff line number	Diff line change
`@@ -39,6 +39,7 @@ abstract class AbstractRememberMeServices implements RememberMeServicesInterface`
`39`	`39`	`protected $options = [`
`40`	`40`	`'secure' => false,`
`41`	`41`	`'httponly' => true,`
	`42`	`+ 'samesite' => null,`
`42`	`43`	`];`
`43`	`44`	`private $providerKey;`
`44`	`45`	`private $secret;`
`@@ -274,7 +275,7 @@ protected function cancelCookie(Request $request)`
`274`	`275`	`$this->logger->debug('Clearing remember-me cookie.', ['name' => $this->options['name']]);`
`275`	`276`	`}`
`276`	`277`
`277`		`- $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'], $this->options['secure'] ?? $request->isSecure(), $this->options['httponly'], false, $this->options['samesite'] ?? null));`
	`278`	`+ $request->attributes->set(self::COOKIE_ATTR_NAME, new Cookie($this->options['name'], null, 1, $this->options['path'], $this->options['domain'], $this->options['secure'] ?? $request->isSecure(), $this->options['httponly'], false, $this->options['samesite']));`
`278`	`279`	`}`
`279`	`280`
`280`	`281`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -86,7 +86,7 @@ protected function processAutoLoginCookie(array $cookieParts, Request $request)`
`86`	`86`	`$this->options['secure'] ?? $request->isSecure(),`
`87`	`87`	`$this->options['httponly'],`
`88`	`88`	`false,`
`89`		`- $this->options['samesite'] ?? null`
	`89`	`+ $this->options['samesite']`
`90`	`90`	`)`
`91`	`91`	`);`
`92`	`92`
`@@ -121,7 +121,7 @@ protected function onLoginSuccess(Request $request, Response $response, TokenInt`
`121`	`121`	`$this->options['secure'] ?? $request->isSecure(),`
`122`	`122`	`$this->options['httponly'],`
`123`	`123`	`false,`
`124`		`- $this->options['samesite'] ?? null`
	`124`	`+ $this->options['samesite']`
`125`	`125`	`)`
`126`	`126`	`);`
`127`	`127`	`}`
Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,7 @@ protected function onLoginSuccess(Request $request, Response $response, TokenInt`
`83`	`83`	`$this->options['secure'] ?? $request->isSecure(),`
`84`	`84`	`$this->options['httponly'],`
`85`	`85`	`false,`
`86`		`- $this->options['samesite'] ?? null`
	`86`	`+ $this->options['samesite']`
`87`	`87`	`)`
`88`	`88`	`);`
`89`	`89`	`}`