feature #19254 Add #[IsCsrfTokenValid] attribute (yguedidi)

This PR was merged into the 7.1 branch.

Discussion
----------

Add `#[IsCsrfTokenValid]` attribute

closes #19251

I'm not that good at copywriting, so here an attempt to at least mention the new attribute in the doc 🙂

Commits
-------

566fdd0 IsCsrfTokenValid documentation

Author: OskarStark

security/csrf.rst

@@ -164,6 +164,26 @@ method to check its validity::
         }
     }
 
+Alternatively you can use the
+:class:`Symfony\\Component\\Security\\Http\\Attribute\\IsCsrfTokenValid`
+attribute on the controller action::
+
+    use Symfony\Component\HttpFoundation\Request;
+    use Symfony\Component\HttpFoundation\Response;
+    use Symfony\Component\Security\Http\Attribute\IsCsrfTokenValid;
+    // ...
+
+    #[IsCsrfTokenValid('delete-item', tokenKey: 'token')]
+    public function delete(Request $request): Response
+    {
+        // ... do something, like deleting an object
+    }
+
+.. versionadded:: 7.1
+
+    The :class:`Symfony\\Component\\Security\\Http\\Attribute\\IsCsrfTokenValid`
+    attribute was introduced in Symfony 7.1.
+
 CSRF Tokens and Compression Side-Channel Attacks
 ------------------------------------------------