Hide sensitive information with SensitiveParameter attribute

GromNaN · fabpot · commit f4a7283e2b56 · 2022-07-11T08:49:17.000+02:00
diff --git a/Controller/AbstractController.php b/Controller/AbstractController.php
@@ -374,7 +374,7 @@ protected function getUser(): ?UserInterface
      * @param string      $id    The id used when generating the token
      * @param string|null $token The actual token sent with the request that should be validated
      */
-    protected function isCsrfTokenValid(string $id, ?string $token): bool
+    protected function isCsrfTokenValid(string $id, #[\SensitiveParameter] ?string $token): bool
     {
         if (!$this->container->has('security.csrf.token_manager')) {
             throw new \LogicException('CSRF protection is not enabled in your application. Enable it with the "csrf_protection" key in "config/packages/framework.yaml".');

Original file line number	Diff line number	Diff line change
`@@ -374,7 +374,7 @@ protected function getUser(): ?UserInterface`
`374`	`374`	`* @param string $id The id used when generating the token`
`375`	`375`	`* @param string\|null $token The actual token sent with the request that should be validated`
`376`	`376`	`*/`
`377`		`- protected function isCsrfTokenValid(string $id, ?string $token): bool`
	`377`	`+ protected function isCsrfTokenValid(string $id, #[\SensitiveParameter] ?string $token): bool`
`378`	`378`	`{`
`379`	`379`	`if (!$this->container->has('security.csrf.token_manager')) {`
`380`	`380`	`throw new \LogicException('CSRF protection is not enabled in your application. Enable it with the "csrf_protection" key in "config/packages/framework.yaml".');`