Skip to content

[Security] Fix incorrect checkPostAuth() signature in UserChecker documentation #21618

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 2, 2025
Merged

[Security] Fix incorrect checkPostAuth() signature in UserChecker documentation #21618

merged 1 commit into from
Dec 2, 2025
+1 −1

Conversation

@lacatoire
Copy link

@lacatoire lacatoire commented Dec 2, 2025

The documentation for UserChecker::checkPostAuth() currently shows the following signature:

public function checkPostAuth(UserInterface $user, TokenInterface $token): void

This is incorrect for Symfony 7.3, where the $token argument is:

  • nullable
  • optional

and handled internally via func_get_arg() for backward compatibility

The correct signature for 7.3 should be:

public function checkPostAuth(UserInterface $user, ?TokenInterface $token = null): void

@carsonbot carsonbot added this to the 7.3 milestone Dec 2, 2025
@carsonbot carsonbot changed the title Fix incorrect checkPostAuth() signature in UserChecker documentation Fix incorrect checkPostAuth() signature in UserChecker documentation Dec 2, 2025
@carsonbot carsonbot changed the title Fix incorrect checkPostAuth() signature in UserChecker documentation [Security] Fix incorrect checkPostAuth() signature in UserChecker documentation Dec 2, 2025
@javiereguiluz
Copy link
Member

javiereguiluz commented Dec 2, 2025

It's tre. You can check this here: https://github.com/symfony/symfony/blob/7.3/src/Symfony/Component/Security/Core/User/UserCheckerInterface.php

Thanks Louis-Arnaud for fixing this issue and for perfectly explaining the issue.

@javiereguiluz javiereguiluz merged commit f7c9a76 into symfony:7.3 Dec 2, 2025
2 of 3 checks passed
@lacatoire lacatoire deleted the fix/userchecker-doc-signature branch December 2, 2025 17:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Security Status: Reviewed

Projects

None yet

Milestone

7.3

Development

Successfully merging this pull request may close these issues.

3 participants

@lacatoire @javiereguiluz @carsonbot