PasswordEncoderInterface has wrong type hinting #31812

garak · 2019-06-03T13:07:35Z

Symfony version(s) affected: >=3.4

PasswordEncoderInterface has, in both methods, string for the type-hinting (in phpDoc) of $salt parameter.
This is wrong and should be string|null: as a matter of fact, newer encoders don't require a salt.

I found this with phpstan:

Parameter 2 $salt of method Symfony\Component\Security\Core\Encoder\PasswordEncoderInterface::encodePassword() expects string, null given.

The text was updated successfully, but these errors were encountered:

chalasr · 2019-06-03T13:24:44Z

👍 PR welcome

See issue symfony#31812

This PR was squashed before being merged into the 3.4 branch (closes #31813). Discussion ---------- fix type hint for salt in PasswordEncoderInterface See issue #31812 | Q | A | ------------- | --- | Branch? | 3.4 | Bug fix? | yes | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | #31812 | License | MIT | Doc PR | none Pretty self-explanatory Commits ------- 0e741f9 fix type hint for salt in PasswordEncoderInterface

xabbuh added the Security label Jun 3, 2019

garak added a commit to garak/symfony that referenced this issue Jun 3, 2019

fix type hint for salt in PasswordEncoderInterface

77c9d99

See issue symfony#31812

garak mentioned this issue Jun 3, 2019

fix type hint for salt in PasswordEncoderInterface #31813

Merged

nicolas-grekas closed this as completed Jun 3, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

PasswordEncoderInterface has wrong type hinting #31812

PasswordEncoderInterface has wrong type hinting #31812

garak commented Jun 3, 2019

chalasr commented Jun 3, 2019

Uh oh!

Uh oh!

PasswordEncoderInterface has wrong type hinting #31812

PasswordEncoderInterface has wrong type hinting #31812

Comments

garak commented Jun 3, 2019

chalasr commented Jun 3, 2019

Uh oh!