From 40a2d2f9450986b6e4e076ee5202f6423adfbca4 Mon Sep 17 00:00:00 2001
From: Robin Chalas <robin.chalas@gmail.com>
Date: Sat, 28 Jun 2025 18:36:16 +0200
Subject: [PATCH] [SecurityBundle] Deprecate the
 `security.authentication.hide_user_not_found` parameter

---
 .../SecurityBundle/DependencyInjection/SecurityExtension.php    | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php
index 0d41e3db0e618..c349a55cd94a9 100644
--- a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php
+++ b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php
@@ -157,6 +157,8 @@ public function load(array $configs, ContainerBuilder $container): void
         }
 
         $container->setParameter('security.authentication.hide_user_not_found', ExposeSecurityLevel::All !== $config['expose_security_errors']);
+        $container->deprecateParameter('security.authentication.hide_user_not_found', 'symfony/security-bundle', '7.4');
+
         $container->setParameter('.security.authentication.expose_security_errors', $config['expose_security_errors']);
 
         if (class_exists(Application::class)) {