Bump symfony/http-foundation from 4.4.37 to 5.4.14 #48

dependabot · 2022-10-16T23:41:38Z

Bumps symfony/http-foundation from 4.4.37 to 5.4.14.

Release notes

Sourced from symfony/http-foundation's releases.

v5.4.14

Changelog (symfony/http-foundation@v5.4.13...v5.4.14)

bug #47746 Fix BinaryFileResponse content type detection logic (X-Coder264)

v5.4.13

Changelog (symfony/http-foundation@v5.4.12...v5.4.13)

bug #47516 Prevent BinaryFileResponse::prepare from adding content type if no content is sent (naitsirch)

bug #47530 Always return strings from accept headers (ausi)

bug #47434 move flushing outside of Response::closeOutputBuffers (nicolas-grekas)

v5.4.12

Changelog (symfony/http-foundation@v5.4.11...v5.4.12)

bug #47283 Prevent accepted rate limits with no remaining token to be preferred over denied ones (MatTheCat)

bug #47273 Do not send Set-Cookie header twice for deleted session cookie (X-Coder264)

bug #47130 Fix invalid ID not regenerated with native PHP file sessions (BrokenSourceCode)

v5.4.11

Changelog (symfony/http-foundation@v5.4.10...v5.4.11)

bug #46931 Flush backend output buffer after closing. (bradjones1)

bug #42033 Fix deleteFileAfterSend on client abortion (nerg4l)

bug #46790 Prevent PHP Warning: Session ID is too long or contains illegal characters (BrokenSourceCode)

bug #46808 Fix TypeError on null $_SESSION in NativeSessionStorage::save() (chalasr)

v5.4.10

Changelog (symfony/http-foundation@v5.4.9...v5.4.10)

bug #46678 Update "[Session] Overwrite invalid session id" to only validate when files session storage is used (alexpott)

bug #46676 Extend type guessing on enum fields (Gigino Chianese)

v5.4.9

Changelog (symfony/http-foundation@v5.4.8...v5.4.9)

bug #46249 Regenerate invalid session id (peter17)

v5.4.8

Changelog (symfony/http-foundation@v5.4.7...v5.4.8)

no significant changes

v5.4.6

Changelog (symfony/http-foundation@v5.4.5...v5.4.6)

bug #45631 Fix PHP 8.1 deprecation in Response::isNotModified (HypeMC)

v5.4.5

Changelog (symfony/http-foundation@v5.4.4...v5.4.5)

... (truncated)

Changelog

Sourced from symfony/http-foundation's changelog.

CHANGELOG

6.1

Add stale while revalidate and stale if error cache header

Allow dynamic session "ttl" when using a remote storage

6.0

Remove the NamespacedAttributeBag class

Removed Response::create(), JsonResponse::create(), RedirectResponse::create(), StreamedResponse::create() and BinaryFileResponse::create() methods (use __construct() instead)

Not passing a Closure together with FILTER_CALLBACK to ParameterBag::filter() throws an \InvalidArgumentException; wrap your filter in a closure instead

Not passing a Closure together with FILTER_CALLBACK to InputBag::filter() throws an \InvalidArgumentException; wrap your filter in a closure instead

Removed the Request::HEADER_X_FORWARDED_ALL constant, use either Request::HEADER_X_FORWARDED_FOR | Request::HEADER_X_FORWARDED_HOST | Request::HEADER_X_FORWARDED_PORT | Request::HEADER_X_FORWARDED_PROTO or Request::HEADER_X_FORWARDED_AWS_ELB or Request::HEADER_X_FORWARDED_TRAEFIKconstants instead

Rename RequestStack::getMasterRequest() to getMainRequest()

Not passing FILTER_REQUIRE_ARRAY or FILTER_FORCE_ARRAY flags to InputBag::filter() when filtering an array will throw BadRequestException

Removed the Request::HEADER_X_FORWARDED_ALL constant

Retrieving non-scalar values using InputBag::get() will throw BadRequestException (use InputBad::all() instead to retrieve an array)

Passing non-scalar default value as the second argument InputBag::get() will throw \InvalidArgumentException

Passing non-scalar, non-array value as the second argument InputBag::set() will throw \InvalidArgumentException

Passing null as $requestIp to IpUtils::__checkIp(), IpUtils::__checkIp4() or IpUtils::__checkIp6() is not supported anymore.

5.4

Deprecate passing null as $requestIp to IpUtils::__checkIp(), IpUtils::__checkIp4() or IpUtils::__checkIp6(), pass an empty string instead.

Add the litespeed_finish_request method to work with Litespeed

Deprecate upload_progress.* and url_rewriter.tags session options

Allow setting session options via DSN

5.3

Add the SessionFactory, NativeSessionStorageFactory, PhpBridgeSessionStorageFactory and MockFileSessionStorageFactory classes

Calling Request::getSession() when there is no available session throws a SessionNotFoundException

Add the RequestStack::getSession method

Deprecate the NamespacedAttributeBag class

Add ResponseFormatSame PHPUnit constraint

Deprecate the RequestStack::getMasterRequest() method and add getMainRequest() as replacement

5.2.0

added support for X-Forwarded-Prefix header

added HeaderUtils::parseQuery(): it does the same as parse_str() but preserves dots in variable names

... (truncated)

Commits

e7c7b39 Merge branch '4.4' into 5.4
7eea76a skip a test if the mime type detection feature will not work
0cf0ec2 Merge branch '4.4' into 5.4
9aeb286 Fix BinaryFileResponse content type detection logic
54be067 Merge branch '4.4' into 5.4
7acdc97 [HttpFoundation] Prevent BinaryFileResponse::prepare from adding content type...
22d2bbe Merge branch '4.4' into 5.4
935f796 [HttpFoundation] Always return strings from accept headers
823d355 Merge branch '4.4' into 5.4
518e21d [HttpFoundation] move flushing outside of Response::closeOutputBuffers
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [symfony/http-foundation](https://github.com/symfony/http-foundation) from 4.4.37 to 5.4.14. - [Release notes](https://github.com/symfony/http-foundation/releases) - [Changelog](https://github.com/symfony/http-foundation/blob/6.1/CHANGELOG.md) - [Commits](symfony/http-foundation@v4.4.37...v5.4.14) --- updated-dependencies: - dependency-name: symfony/http-foundation dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 16, 2022

dependabot bot mentioned this pull request Oct 16, 2022

Bump symfony/http-foundation from 4.4.37 to 4.4.46 #45

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump symfony/http-foundation from 4.4.37 to 5.4.14 #48

Bump symfony/http-foundation from 4.4.37 to 5.4.14 #48

dependabot bot commented on behalf of github Oct 16, 2022

Bump symfony/http-foundation from 4.4.37 to 5.4.14 #48

Are you sure you want to change the base?

Bump symfony/http-foundation from 4.4.37 to 5.4.14 #48

Conversation

dependabot bot commented on behalf of github Oct 16, 2022

v5.4.14

v5.4.13

v5.4.12

v5.4.11

v5.4.10

v5.4.9

v5.4.8

v5.4.6

v5.4.5

CHANGELOG

6.1

6.0

5.4

5.3

5.2.0