Hey
I have credentials for each module i build.
For example:
# Module abc have the security.yml:
all:
credentials: 6
But i can access my module abc even without the credential 6.
The results of the hasCredential are strange too, because i always get
1 from them, even if i remove the credential. Example:
$this->addCredential("xpto");
echo $this->hasCredential("xpto"); // prints 1
$this->removeCredential("xpto");
echo $this->hasCredential("xpto"); // prints 1
What is happening?
PS: My default security.yml have:
default:
is_secure: true
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
To unsubscribe from this group, send email to
symfony-users+unsubscribegooglegroups.com or reply to this email with the words
"REMOVE ME" as the subject.
