Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
bug #26157 [HttpKernel] Send new session cookie from AbstractTestSess…
…ionListener after session invalidation (rpkamp) This PR was merged into the 3.4 branch. Discussion ---------- [HttpKernel] Send new session cookie from AbstractTestSessionListener after session invalidation When we call `\Symfony\Component\HttpFoundation\Session\Session::invalidate` the session will be emptied and given a new ID, however, since it is empty this `AbstractTestSessionListener` will not send a new cookie to the user, so the user is not caught up to the latest session ID and will re-generate a session with the old session ID on a new visit. Thus, we the sessionID has changed during a request we must always send a new cookie with the new sessionID, even though the session is empty. This behaviour is also what is shown in production (non-test) mode. | Q | A | ------------- | --- | Branch? | master | Bug fix? | yes | New feature? | no | BC breaks? | no | Deprecations? | no | Tests pass? | yes | Fixed tickets | N/A | License | MIT Commits ------- 98f5d53 [HttpKernel] Send new session cookie from AbstractTestSessionListener after session invalidation
- Loading branch information