[Security] Fix invalid RememberMe value after update #41741

jderusse · 2021-06-18T08:03:35Z

When refreshing the rememberMe cookie value, the series part where lost, leading to an invalid RememberMe cookie the next time we want to use it.

wouterj

Whoa, good catch!

wouterj · 2021-06-18T13:09:01Z

Thanks Jérémy.

[Security] Fix value lost in RememberMe update

f3b11e7

jderusse requested review from chalasr and wouterj as code owners June 18, 2021 08:03

carsonbot added Status: Needs Review Bug Security labels Jun 18, 2021

carsonbot added this to the 5.3 milestone Jun 18, 2021

jderusse changed the title ~~[Security] Fix value lost in RememberMe update~~ [Security] Fix invalid RememberMe value after update Jun 18, 2021

wouterj approved these changes Jun 18, 2021

View reviewed changes

carsonbot added Status: Reviewed and removed Status: Needs Review labels Jun 18, 2021

nicolas-grekas approved these changes Jun 18, 2021

View reviewed changes

wouterj merged commit fe366a0 into symfony:5.3 Jun 18, 2021

jderusse deleted the fix-rememberme-serie branch June 23, 2021 08:52

jderusse mentioned this pull request Jun 29, 2021

Refreshed RememberMe cookie contains invalid data #41891

Closed

fabpot mentioned this pull request Jun 30, 2021

Release v5.3.3 #41916

Merged

Provide feedback