minor #39923 [SecurityBundle] Remove wrong test (jderusse)

jderusse · jderusse · commit 039fe6ab8644 · 2021-01-21T17:48:11.000+01:00
This PR was merged into the 4.4 branch. Discussion ---------- [SecurityBundle] Remove wrong test | Q | A | ------------- | --- | Branch? | 4.4 | Bug fix? | yes | New feature? | no | Deprecations? | no | Tickets | - | License | MIT | Doc PR | - This tests, asserts that all links to logout are identical, which is wrong and incompatible with BREACH mitigation #39919 Commits ------- 91c360e Remove wrong test
diff --git a/src/Symfony/Bundle/SecurityBundle/Tests/Functional/CsrfFormLoginTest.php b/src/Symfony/Bundle/SecurityBundle/Tests/Functional/CsrfFormLoginTest.php
@@ -36,7 +36,6 @@ public function testFormLoginAndLogoutWithCsrfTokens($config)
         $logoutLinks = $crawler->selectLink('Log out')->links();
         $this->assertCount(2, $logoutLinks);
         $this->assertStringContainsString('_csrf_token=', $logoutLinks[0]->getUri());
-        $this->assertSame($logoutLinks[0]->getUri(), $logoutLinks[1]->getUri());
 
         $client->click($logoutLinks[0]);
 
