symfony
diff --git a/‎security.rst
Lines changed: 7 additions & 5 deletions b/‎security.rst
Lines changed: 7 additions & 5 deletions
diff --git a/‎security/access_denied_handler.rst
Lines changed: 1 addition & 1 deletion b/‎security/access_denied_handler.rst
Lines changed: 1 addition & 1 deletion
diff --git a/‎security/csrf.rst
Lines changed: 4 additions & 3 deletions b/‎security/csrf.rst
Lines changed: 4 additions & 3 deletions
diff --git a/‎security/custom_authentication_provider.rst
Lines changed: 13 additions & 13 deletions b/‎security/custom_authentication_provider.rst
Lines changed: 13 additions & 13 deletions
diff --git a/‎security/expressions.rst
Lines changed: 2 additions & 2 deletions b/‎security/expressions.rst
Lines changed: 2 additions & 2 deletions
diff --git a/‎security/form_login.rst
Lines changed: 2 additions & 2 deletions b/‎security/form_login.rst
Lines changed: 2 additions & 2 deletions
diff --git a/‎security/form_login_setup.rst
Lines changed: 9 additions & 8 deletions b/‎security/form_login_setup.rst
Lines changed: 9 additions & 8 deletions
@@ -644,7 +644,7 @@ You can deny access from inside a controller::
     // src/Controller/AdminController.php
     // ...
 
-    public function adminDashboard()
+    public function adminDashboard(): Response
     {
         $this->denyAccessUnlessGranted('ROLE_ADMIN');
 
@@ -688,7 +688,7 @@ using annotations:
     +      *
     +      * @IsGranted("ROLE_ADMIN")
     +      */
-        public function adminDashboard()
+        public function adminDashboard(): Response
         {
             // ...
         }
@@ -735,7 +735,7 @@ role::
 
     // ...
 
-    public function adminDashboard()
+    public function adminDashboard(): Response
     {
         $this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');
 
@@ -770,7 +770,7 @@ like this:
 After authentication, the ``User`` object of the current user can be accessed
 via the ``getUser()`` shortcut::
 
-    public function index()
+    public function index(): Response
     {
         // usually you'll want to make sure the user is authenticated first
         $this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');
@@ -811,6 +811,8 @@ If you need to get the logged in user from a service, use the
         {
             // returns User object or null if not authenticated
             $user = $this->security->getUser();
+
+            // ...
         }
     }
 
@@ -901,7 +903,7 @@ Next, you'll need to create a route for this URL (but not a controller):
             /**
              * @Route("/logout", name="app_logout", methods={"GET"})
              */
-            public function logout()
+            public function logout(): void
             {
                 // controller can be blank: it will never be executed!
                 throw new \Exception('Don\'t forget to activate logout in security.yaml');
 
@@ -123,7 +123,7 @@ response)::
 
     class AccessDeniedHandler implements AccessDeniedHandlerInterface
     {
-        public function handle(Request $request, AccessDeniedException $accessDeniedException)
+        public function handle(Request $request, AccessDeniedException $accessDeniedException): ?Response
         {
             // ...
 
 
@@ -85,7 +85,7 @@ this can be customized on a form-by-form basis::
 
     // src/Form/TaskType.php
     namespace App\Form;
-    
+
     // ...
     use App\Entity\Task;
     use Symfony\Component\OptionsResolver\OptionsResolver;
@@ -94,7 +94,7 @@ this can be customized on a form-by-form basis::
     {
         // ...
 
-        public function configureOptions(OptionsResolver $resolver)
+        public function configureOptions(OptionsResolver $resolver): void
         {
             $resolver->setDefaults([
                 'data_class'      => Task::class,
@@ -153,10 +153,11 @@ Then, get the value of the CSRF token in the controller action and use the
 :method:`Symfony\\Bundle\\FrameworkBundle\\Controller\\AbstractController::isCsrfTokenValid`
 to check its validity::
 
+    use Symfony\Component\HttpFoundation\Response;
     use Symfony\Component\HttpFoundation\Request;
     // ...
 
-    public function delete(Request $request)
+    public function delete(Request $request): Response
     {
         $submittedToken = $request->request->get('token');
 
 
@@ -78,7 +78,7 @@ provider::
             $this->setAuthenticated(count($roles) > 0);
         }
 
-        public function getCredentials()
+        public function getCredentials(): string
         {
             return '';
         }
@@ -123,7 +123,7 @@ set an authenticated token in the token storage if successful::
             $this->authenticationManager = $authenticationManager;
         }
 
-        public function __invoke(RequestEvent $event)
+        public function __invoke(RequestEvent $event): void
         {
             $request = $event->getRequest();
 
@@ -216,7 +216,7 @@ the ``PasswordDigest`` header value matches with the user's password::
             $this->cachePool = $cachePool;
         }
 
-        public function authenticate(TokenInterface $token)
+        public function authenticate(TokenInterface $token): WsseUserToken
         {
             $user = $this->userProvider->loadUserByUsername($token->getUsername());
 
@@ -236,7 +236,7 @@ the ``PasswordDigest`` header value matches with the user's password::
          * For more information specific to the logic here, see
          * https://github.com/symfony/symfony-docs/pull/3134#issuecomment-27699129
          */
-        protected function validateDigest($digest, $nonce, $created, $secret)
+        protected function validateDigest($digest, $nonce, $created, $secret): bool
         {
             // Check created time is not in the future
             if (strtotime($created) > time()) {
@@ -269,7 +269,7 @@ the ``PasswordDigest`` header value matches with the user's password::
             return hash_equals($expected, $digest);
         }
 
-        public function supports(TokenInterface $token)
+        public function supports(TokenInterface $token): bool
         {
             return $token instanceof WsseUserToken;
         }
@@ -307,7 +307,7 @@ create a class which implements
 
     class WsseFactory implements SecurityFactoryInterface
     {
-        public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint)
+        public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint): array
         {
             $providerId = 'security.authentication.provider.wsse.'.$id;
             $container
@@ -321,17 +321,17 @@ create a class which implements
             return [$providerId, $listenerId, $defaultEntryPoint];
         }
 
-        public function getPosition()
+        public function getPosition(): string
         {
             return 'pre_auth';
         }
 
-        public function getKey()
+        public function getKey(): string
         {
             return 'wsse';
         }
 
-        public function addConfiguration(NodeDefinition $node)
+        public function addConfiguration(NodeDefinition $node): void
         {
         }
     }
@@ -455,7 +455,7 @@ factory in the kernel::
 
     class Kernel extends BaseKernel
     {
-        public function build(ContainerBuilder $container)
+        public function build(ContainerBuilder $container): void
         {
             $extension = $container->getExtension('security');
             $extension->addSecurityListenerFactory(new WsseFactory());
@@ -547,7 +547,7 @@ the ``addConfiguration()`` method::
     {
         // ...
 
-        public function addConfiguration(NodeDefinition $node)
+        public function addConfiguration(NodeDefinition $node): void
         {
             $node
                 ->children()
@@ -563,12 +563,12 @@ in order to put it to use::
 
     // src/DependencyInjection/Security/Factory/WsseFactory.php
     namespace App\DependencyInjection\Security\Factory;
-    
+
     use App\Security\Authentication\Provider\WsseProvider;
 
     class WsseFactory implements SecurityFactoryInterface
     {
-        public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint)
+        public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint): array
         {
             $providerId = 'security.authentication.provider.wsse.'.$id;
             $container
 
@@ -15,7 +15,7 @@ accepts an :class:`Symfony\\Component\\ExpressionLanguage\\Expression` object::
     use Symfony\Component\ExpressionLanguage\Expression;
     // ...
 
-    public function index()
+    public function index(): Response
     {
         $this->denyAccessUnlessGranted(new Expression(
             '"ROLE_ADMIN" in roles or (not is_anonymous() and user.isSuperAdmin())'
@@ -80,7 +80,7 @@ Additionally, you have access to a number of functions inside the expression:
         use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
         // ...
 
-        public function index(AuthorizationCheckerInterface $authorizationChecker)
+        public function index(AuthorizationCheckerInterface $authorizationChecker): Response
         {
             $access1 = $authorizationChecker->isGranted('IS_AUTHENTICATED_REMEMBERED');
 
 
@@ -103,7 +103,7 @@ configuration (``login``):
             /**
              * @Route("/login", name="login", methods={"GET", "POST"})
              */
-            public function login()
+            public function login(): Response
             {
             }
         }
@@ -146,7 +146,7 @@ Great! Next, add the logic to ``login()`` that displays the login form::
     // src/Controller/SecurityController.php
     use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
 
-    public function login(AuthenticationUtils $authenticationUtils)
+    public function login(AuthenticationUtils $authenticationUtils): Response
     {
         // get the login error if there is one
         $error = $authenticationUtils->getLastAuthenticationError();
 
@@ -80,7 +80,7 @@ class that processes the login submit and 4) updates the main security config fi
         /**
          * @Route("/logout", name="app_logout")
          */
-        public function logout()
+        public function logout(): void
         {
             throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
         }
@@ -196,6 +196,7 @@ a traditional HTML form that submits to ``/login``:
     use App\Entity\User;
     use Doctrine\ORM\EntityManagerInterface;
     use Symfony\Component\HttpFoundation\RedirectResponse;
+    use Symfony\Component\HttpFoundation\Response;
     use Symfony\Component\HttpFoundation\Request;
     use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
     use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
@@ -230,7 +231,7 @@ a traditional HTML form that submits to ``/login``:
             $this->passwordEncoder = $passwordEncoder;
         }
 
-        public function supports(Request $request)
+        public function supports(Request $request): bool
         {
             return self::LOGIN_ROUTE === $request->attributes->get('_route')
                 && $request->isMethod('POST');
@@ -251,7 +252,7 @@ a traditional HTML form that submits to ``/login``:
             return $credentials;
         }
 
-        public function getUser($credentials, UserProviderInterface $userProvider)
+        public function getUser($credentials, UserProviderInterface $userProvider): ?User
         {
             $token = new CsrfToken('authenticate', $credentials['csrf_token']);
             if (!$this->csrfTokenManager->isTokenValid($token)) {
@@ -268,7 +269,7 @@ a traditional HTML form that submits to ``/login``:
             return $user;
         }
 
-        public function checkCredentials($credentials, UserInterface $user)
+        public function checkCredentials($credentials, UserInterface $user): bool
         {
             return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
         }
@@ -281,7 +282,7 @@ a traditional HTML form that submits to ``/login``:
             return $credentials['password'];
         }
 
-        public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
+        public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey): ?Response
         {
             if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
                 return new RedirectResponse($targetPath);
@@ -291,7 +292,7 @@ a traditional HTML form that submits to ``/login``:
             throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
         }
 
-        protected function getLoginUrl()
+        protected function getLoginUrl(): string
         {
             return $this->urlGenerator->generate(self::LOGIN_ROUTE);
         }
@@ -380,7 +381,7 @@ be redirected after success:
     // src/Security/LoginFormAuthenticator.php
 
     // ...
-    public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
+    public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey): Response
     {
         // ...
 
@@ -503,7 +504,7 @@ whenever the user browses a page::
             $this->saveTargetPath($this->session, 'main', $request->getUri());
         }
 
-        public static function getSubscribedEvents()
+        public static function getSubscribedEvents(): array
         {
             return [
                 KernelEvents::REQUEST => ['onKernelRequest']
Original file line number	Diff line number	Diff line change
`@@ -644,7 +644,7 @@ You can deny access from inside a controller::`
`644`	`644`	`// src/Controller/AdminController.php`
`645`	`645`	`// ...`
`646`	`646`
`647`		`- public function adminDashboard()`
	`647`	`+ public function adminDashboard(): Response`
`648`	`648`	`{`
`649`	`649`	`$this->denyAccessUnlessGranted('ROLE_ADMIN');`
`650`	`650`
`@@ -688,7 +688,7 @@ using annotations:`
`688`	`688`	`+ *`
`689`	`689`	`+ * @IsGranted("ROLE_ADMIN")`
`690`	`690`	`+ */`
`691`		`- public function adminDashboard()`
	`691`	`+ public function adminDashboard(): Response`
`692`	`692`	`{`
`693`	`693`	`// ...`
`694`	`694`	`}`
`@@ -735,7 +735,7 @@ role::`
`735`	`735`
`736`	`736`	`// ...`
`737`	`737`
`738`		`- public function adminDashboard()`
	`738`	`+ public function adminDashboard(): Response`
`739`	`739`	`{`
`740`	`740`	`$this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');`
`741`	`741`
`@@ -770,7 +770,7 @@ like this:`
`770`	`770`	After authentication, the ``User`` object of the current user can be accessed
`771`	`771`	via the ``getUser()`` shortcut::
`772`	`772`
`773`		`- public function index()`
	`773`	`+ public function index(): Response`
`774`	`774`	`{`
`775`	`775`	`// usually you'll want to make sure the user is authenticated first`
`776`	`776`	`$this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');`
`@@ -811,6 +811,8 @@ If you need to get the logged in user from a service, use the`
`811`	`811`	`{`
`812`	`812`	`// returns User object or null if not authenticated`
`813`	`813`	`$user = $this->security->getUser();`
	`814`	`+`
	`815`	`+ // ...`
`814`	`816`	`}`
`815`	`817`	`}`
`816`	`818`
`@@ -901,7 +903,7 @@ Next, you'll need to create a route for this URL (but not a controller):`
`901`	`903`	`/**`
`902`	`904`	`* @Route("/logout", name="app_logout", methods={"GET"})`
`903`	`905`	`*/`
`904`		`- public function logout()`
	`906`	`+ public function logout(): void`
`905`	`907`	`{`
`906`	`908`	`// controller can be blank: it will never be executed!`
`907`	`909`	`throw new \Exception('Don\'t forget to activate logout in security.yaml');`
Original file line number	Diff line number	Diff line change
`@@ -123,7 +123,7 @@ response)::`
`123`	`123`
`124`	`124`	`class AccessDeniedHandler implements AccessDeniedHandlerInterface`
`125`	`125`	`{`
`126`		`- public function handle(Request $request, AccessDeniedException $accessDeniedException)`
	`126`	`+ public function handle(Request $request, AccessDeniedException $accessDeniedException): ?Response`
`127`	`127`	`{`
`128`	`128`	`// ...`
`129`	`129`
Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ provider::`
`78`	`78`	`$this->setAuthenticated(count($roles) > 0);`
`79`	`79`	`}`
`80`	`80`
`81`		`- public function getCredentials()`
	`81`	`+ public function getCredentials(): string`
`82`	`82`	`{`
`83`	`83`	`return '';`
`84`	`84`	`}`
`@@ -123,7 +123,7 @@ set an authenticated token in the token storage if successful::`
`123`	`123`	`$this->authenticationManager = $authenticationManager;`
`124`	`124`	`}`
`125`	`125`
`126`		`- public function __invoke(RequestEvent $event)`
	`126`	`+ public function __invoke(RequestEvent $event): void`
`127`	`127`	`{`
`128`	`128`	`$request = $event->getRequest();`
`129`	`129`
@@ -216,7 +216,7 @@ the ``PasswordDigest`` header value matches with the user's password::
`216`	`216`	`$this->cachePool = $cachePool;`
`217`	`217`	`}`
`218`	`218`
`219`		`- public function authenticate(TokenInterface $token)`
	`219`	`+ public function authenticate(TokenInterface $token): WsseUserToken`
`220`	`220`	`{`
`221`	`221`	`$user = $this->userProvider->loadUserByUsername($token->getUsername());`
`222`	`222`
@@ -236,7 +236,7 @@ the ``PasswordDigest`` header value matches with the user's password::
`236`	`236`	`* For more information specific to the logic here, see`
`237`	`237`	`* https://github.com/symfony/symfony-docs/pull/3134#issuecomment-27699129`
`238`	`238`	`*/`
`239`		`- protected function validateDigest($digest, $nonce, $created, $secret)`
	`239`	`+ protected function validateDigest($digest, $nonce, $created, $secret): bool`
`240`	`240`	`{`
`241`	`241`	`// Check created time is not in the future`
`242`	`242`	`if (strtotime($created) > time()) {`
@@ -269,7 +269,7 @@ the ``PasswordDigest`` header value matches with the user's password::
`269`	`269`	`return hash_equals($expected, $digest);`
`270`	`270`	`}`
`271`	`271`
`272`		`- public function supports(TokenInterface $token)`
	`272`	`+ public function supports(TokenInterface $token): bool`
`273`	`273`	`{`
`274`	`274`	`return $token instanceof WsseUserToken;`
`275`	`275`	`}`
`@@ -307,7 +307,7 @@ create a class which implements`
`307`	`307`
`308`	`308`	`class WsseFactory implements SecurityFactoryInterface`
`309`	`309`	`{`
`310`		`- public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint)`
	`310`	`+ public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint): array`
`311`	`311`	`{`
`312`	`312`	`$providerId = 'security.authentication.provider.wsse.'.$id;`
`313`	`313`	`$container`
`@@ -321,17 +321,17 @@ create a class which implements`
`321`	`321`	`return [$providerId, $listenerId, $defaultEntryPoint];`
`322`	`322`	`}`
`323`	`323`
`324`		`- public function getPosition()`
	`324`	`+ public function getPosition(): string`
`325`	`325`	`{`
`326`	`326`	`return 'pre_auth';`
`327`	`327`	`}`
`328`	`328`
`329`		`- public function getKey()`
	`329`	`+ public function getKey(): string`
`330`	`330`	`{`
`331`	`331`	`return 'wsse';`
`332`	`332`	`}`
`333`	`333`
`334`		`- public function addConfiguration(NodeDefinition $node)`
	`334`	`+ public function addConfiguration(NodeDefinition $node): void`
`335`	`335`	`{`
`336`	`336`	`}`
`337`	`337`	`}`
`@@ -455,7 +455,7 @@ factory in the kernel::`
`455`	`455`
`456`	`456`	`class Kernel extends BaseKernel`
`457`	`457`	`{`
`458`		`- public function build(ContainerBuilder $container)`
	`458`	`+ public function build(ContainerBuilder $container): void`
`459`	`459`	`{`
`460`	`460`	`$extension = $container->getExtension('security');`
`461`	`461`	`$extension->addSecurityListenerFactory(new WsseFactory());`
@@ -547,7 +547,7 @@ the ``addConfiguration()`` method::
`547`	`547`	`{`
`548`	`548`	`// ...`
`549`	`549`
`550`		`- public function addConfiguration(NodeDefinition $node)`
	`550`	`+ public function addConfiguration(NodeDefinition $node): void`
`551`	`551`	`{`
`552`	`552`	`$node`
`553`	`553`	`->children()`
`@@ -563,12 +563,12 @@ in order to put it to use::`
`563`	`563`
`564`	`564`	`// src/DependencyInjection/Security/Factory/WsseFactory.php`
`565`	`565`	`namespace App\DependencyInjection\Security\Factory;`
`566`		`-`
	`566`	`+`
`567`	`567`	`use App\Security\Authentication\Provider\WsseProvider;`
`568`	`568`
`569`	`569`	`class WsseFactory implements SecurityFactoryInterface`
`570`	`570`	`{`
`571`		`- public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint)`
	`571`	`+ public function create(ContainerBuilder $container, $id, $config, $userProvider, $defaultEntryPoint): array`
`572`	`572`	`{`
`573`	`573`	`$providerId = 'security.authentication.provider.wsse.'.$id;`
`574`	`574`	`$container`
Original file line number	Diff line number	Diff line change
@@ -15,7 +15,7 @@ accepts an :class:`Symfony\\Component\\ExpressionLanguage\\Expression` object::
`15`	`15`	`use Symfony\Component\ExpressionLanguage\Expression;`
`16`	`16`	`// ...`
`17`	`17`
`18`		`- public function index()`
	`18`	`+ public function index(): Response`
`19`	`19`	`{`
`20`	`20`	`$this->denyAccessUnlessGranted(new Expression(`
`21`	`21`	`'"ROLE_ADMIN" in roles or (not is_anonymous() and user.isSuperAdmin())'`
`@@ -80,7 +80,7 @@ Additionally, you have access to a number of functions inside the expression:`
`80`	`80`	`use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;`
`81`	`81`	`// ...`
`82`	`82`
`83`		`- public function index(AuthorizationCheckerInterface $authorizationChecker)`
	`83`	`+ public function index(AuthorizationCheckerInterface $authorizationChecker): Response`
`84`	`84`	`{`
`85`	`85`	`$access1 = $authorizationChecker->isGranted('IS_AUTHENTICATED_REMEMBERED');`
`86`	`86`
Original file line number	Diff line number	Diff line change
@@ -103,7 +103,7 @@ configuration (``login``):
`103`	`103`	`/**`
`104`	`104`	`* @Route("/login", name="login", methods={"GET", "POST"})`
`105`	`105`	`*/`
`106`		`- public function login()`
	`106`	`+ public function login(): Response`
`107`	`107`	`{`
`108`	`108`	`}`
`109`	`109`	`}`
@@ -146,7 +146,7 @@ Great! Next, add the logic to ``login()`` that displays the login form::
`146`	`146`	`// src/Controller/SecurityController.php`
`147`	`147`	`use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;`
`148`	`148`
`149`		`- public function login(AuthenticationUtils $authenticationUtils)`
	`149`	`+ public function login(AuthenticationUtils $authenticationUtils): Response`
`150`	`150`	`{`
`151`	`151`	`// get the login error if there is one`
`152`	`152`	`$error = $authenticationUtils->getLastAuthenticationError();`
Original file line number	Diff line number	Diff line change
`@@ -80,7 +80,7 @@ class that processes the login submit and 4) updates the main security config fi`
`80`	`80`	`/**`
`81`	`81`	`* @Route("/logout", name="app_logout")`
`82`	`82`	`*/`
`83`		`- public function logout()`
	`83`	`+ public function logout(): void`
`84`	`84`	`{`
`85`	`85`	`throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');`
`86`	`86`	`}`
@@ -196,6 +196,7 @@ a traditional HTML form that submits to ``/login``:
`196`	`196`	`use App\Entity\User;`
`197`	`197`	`use Doctrine\ORM\EntityManagerInterface;`
`198`	`198`	`use Symfony\Component\HttpFoundation\RedirectResponse;`
	`199`	`+ use Symfony\Component\HttpFoundation\Response;`
`199`	`200`	`use Symfony\Component\HttpFoundation\Request;`
`200`	`201`	`use Symfony\Component\Routing\Generator\UrlGeneratorInterface;`
`201`	`202`	`use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;`
@@ -230,7 +231,7 @@ a traditional HTML form that submits to ``/login``:
`230`	`231`	`$this->passwordEncoder = $passwordEncoder;`
`231`	`232`	`}`
`232`	`233`
`233`		`- public function supports(Request $request)`
	`234`	`+ public function supports(Request $request): bool`
`234`	`235`	`{`
`235`	`236`	`return self::LOGIN_ROUTE === $request->attributes->get('_route')`
`236`	`237`	`&& $request->isMethod('POST');`
@@ -251,7 +252,7 @@ a traditional HTML form that submits to ``/login``:
`251`	`252`	`return $credentials;`
`252`	`253`	`}`
`253`	`254`
`254`		`- public function getUser($credentials, UserProviderInterface $userProvider)`
	`255`	`+ public function getUser($credentials, UserProviderInterface $userProvider): ?User`
`255`	`256`	`{`
`256`	`257`	`$token = new CsrfToken('authenticate', $credentials['csrf_token']);`
`257`	`258`	`if (!$this->csrfTokenManager->isTokenValid($token)) {`
@@ -268,7 +269,7 @@ a traditional HTML form that submits to ``/login``:
`268`	`269`	`return $user;`
`269`	`270`	`}`
`270`	`271`
`271`		`- public function checkCredentials($credentials, UserInterface $user)`
	`272`	`+ public function checkCredentials($credentials, UserInterface $user): bool`
`272`	`273`	`{`
`273`	`274`	`return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);`
`274`	`275`	`}`
@@ -281,7 +282,7 @@ a traditional HTML form that submits to ``/login``:
`281`	`282`	`return $credentials['password'];`
`282`	`283`	`}`
`283`	`284`
`284`		`- public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)`
	`285`	`+ public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey): ?Response`
`285`	`286`	`{`
`286`	`287`	`if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {`
`287`	`288`	`return new RedirectResponse($targetPath);`
@@ -291,7 +292,7 @@ a traditional HTML form that submits to ``/login``:
`291`	`292`	`throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);`
`292`	`293`	`}`
`293`	`294`
`294`		`- protected function getLoginUrl()`
	`295`	`+ protected function getLoginUrl(): string`
`295`	`296`	`{`
`296`	`297`	`return $this->urlGenerator->generate(self::LOGIN_ROUTE);`
`297`	`298`	`}`
`@@ -380,7 +381,7 @@ be redirected after success:`
`380`	`381`	`// src/Security/LoginFormAuthenticator.php`
`381`	`382`
`382`	`383`	`// ...`
`383`		`- public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)`
	`384`	`+ public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey): Response`
`384`	`385`	`{`
`385`	`386`	`// ...`
`386`	`387`
`@@ -503,7 +504,7 @@ whenever the user browses a page::`
`503`	`504`	`$this->saveTargetPath($this->session, 'main', $request->getUri());`
`504`	`505`	`}`
`505`	`506`
`506`		`- public static function getSubscribedEvents()`
	`507`	`+ public static function getSubscribedEvents(): array`
`507`	`508`	`{`
`508`	`509`	`return [`
`509`	`510`	`KernelEvents::REQUEST => ['onKernelRequest']`