Skip to content
Permalink
Browse files

[Security] Only redirect to urls called with http method GET

  • Loading branch information...
uwej711 committed Jun 14, 2012
1 parent 4e1e08e commit 3ce8227a9bf1d211475e889e8fd063a72b7cc3b5
Showing with 1 addition and 1 deletion.
  1. +1 −1 src/Symfony/Component/Security/Http/Firewall/ExceptionListener.php
@@ -172,7 +172,7 @@ private function startAuthentication(Request $request, AuthenticationException $
protected function setTargetPath(Request $request)
{
// session isn't required when using http basic authentication mechanism for example
if ($request->hasSession()) {
if ($request->hasSession() && 'GET' == $request->getMethod()) {
$request->getSession()->set('_security.target_path', $request->getUri());
}
}

0 comments on commit 3ce8227

Please sign in to comment.
You can’t perform that action at this time.