develop
/
qwl_config
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
9.4 MiB
Tree: 85f826c35f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '85f826c35f'
${ noResults }
qwl_config/vendor/symfony/http-foundation/CHANGELOG.md

288 lines
15 KiB
Raw Normal View History

111
3 years ago
  1. CHANGELOG
  2. =========
  4. 5.3
  5. ---
  7. * Add the `SessionFactory`, `NativeSessionStorageFactory`, `PhpBridgeSessionStorageFactory` and `MockFileSessionStorageFactory` classes
  8. * Calling `Request::getSession()` when there is no available session throws a `SessionNotFoundException`
  9. * Add the `RequestStack::getSession` method
  10. * Deprecate the `NamespacedAttributeBag` class
  11. * Add `ResponseFormatSame` PHPUnit constraint
  12. * Deprecate the `RequestStack::getMasterRequest()` method and add `getMainRequest()` as replacement
  14. 5.2.0
  15. -----
  17. * added support for `X-Forwarded-Prefix` header
  18. * added `HeaderUtils::parseQuery()`: it does the same as `parse_str()` but preserves dots in variable names
  19. * added `File::getContent()`
  20. * added ability to use comma separated ip addresses for `RequestMatcher::matchIps()`
  21. * added `Request::toArray()` to parse a JSON request body to an array
  22. * added `RateLimiter\RequestRateLimiterInterface` and `RateLimiter\AbstractRequestRateLimiter`
  23. * deprecated not passing a `Closure` together with `FILTER_CALLBACK` to `ParameterBag::filter()`; wrap your filter in a closure instead.
  24. * Deprecated the `Request::HEADER_X_FORWARDED_ALL` constant, use either `HEADER_X_FORWARDED_FOR | HEADER_X_FORWARDED_HOST | HEADER_X_FORWARDED_PORT | HEADER_X_FORWARDED_PROTO` or `HEADER_X_FORWARDED_AWS_ELB` or `HEADER_X_FORWARDED_TRAEFIK` constants instead.
  25. * Deprecated `BinaryFileResponse::create()`, use `__construct()` instead
  27. 5.1.0
  28. -----
  30. * added `Cookie::withValue`, `Cookie::withDomain`, `Cookie::withExpires`,
  31. `Cookie::withPath`, `Cookie::withSecure`, `Cookie::withHttpOnly`,
  32. `Cookie::withRaw`, `Cookie::withSameSite`
  33. * Deprecate `Response::create()`, `JsonResponse::create()`,
  34. `RedirectResponse::create()`, and `StreamedResponse::create()` methods (use
  35. `__construct()` instead)
  36. * added `Request::preferSafeContent()` and `Response::setContentSafe()` to handle "safe" HTTP preference
  37. according to [RFC 8674](https://tools.ietf.org/html/rfc8674)
  38. * made the Mime component an optional dependency
  39. * added `MarshallingSessionHandler`, `IdentityMarshaller`
  40. * made `Session` accept a callback to report when the session is being used
  41. * Add support for all core cache control directives
  42. * Added `Symfony\Component\HttpFoundation\InputBag`
  43. * Deprecated retrieving non-string values using `InputBag::get()`, use `InputBag::all()` if you need access to the collection of values
  45. 5.0.0
  46. -----
  48. * made `Cookie` auto-secure and lax by default
  49. * removed classes in the `MimeType` namespace, use the Symfony Mime component instead
  50. * removed method `UploadedFile::getClientSize()` and the related constructor argument
  51. * made `Request::getSession()` throw if the session has not been set before
  52. * removed `Response::HTTP_RESERVED_FOR_WEBDAV_ADVANCED_COLLECTIONS_EXPIRED_PROPOSAL`
  53. * passing a null url when instantiating a `RedirectResponse` is not allowed
  55. 4.4.0
  56. -----
  58. * passing arguments to `Request::isMethodSafe()` is deprecated.
  59. * `ApacheRequest` is deprecated, use the `Request` class instead.
  60. * passing a third argument to `HeaderBag::get()` is deprecated, use method `all()` instead
  61. * [BC BREAK] `PdoSessionHandler` with MySQL changed the type of the lifetime column,
  62. make sure to run `ALTER TABLE sessions MODIFY sess_lifetime INTEGER UNSIGNED NOT NULL` to
  63. update your database.
  64. * `PdoSessionHandler` now precalculates the expiry timestamp in the lifetime column,
  65. make sure to run `CREATE INDEX EXPIRY ON sessions (sess_lifetime)` to update your database
  66. to speed up garbage collection of expired sessions.
  67. * added `SessionHandlerFactory` to create session handlers with a DSN
  68. * added `IpUtils::anonymize()` to help with GDPR compliance.
  70. 4.3.0
  71. -----
  73. * added PHPUnit constraints: `RequestAttributeValueSame`, `ResponseCookieValueSame`, `ResponseHasCookie`,
  74. `ResponseHasHeader`, `ResponseHeaderSame`, `ResponseIsRedirected`, `ResponseIsSuccessful`, and `ResponseStatusCodeSame`
  75. * deprecated `MimeTypeGuesserInterface` and `ExtensionGuesserInterface` in favor of `Symfony\Component\Mime\MimeTypesInterface`.
  76. * deprecated `MimeType` and `MimeTypeExtensionGuesser` in favor of `Symfony\Component\Mime\MimeTypes`.
  77. * deprecated `FileBinaryMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileBinaryMimeTypeGuesser`.
  78. * deprecated `FileinfoMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileinfoMimeTypeGuesser`.
  79. * added `UrlHelper` that allows to get an absolute URL and a relative path for a given path
  81. 4.2.0
  82. -----
  84. * the default value of the "$secure" and "$samesite" arguments of Cookie's constructor
  85. will respectively change from "false" to "null" and from "null" to "lax" in Symfony
  86. 5.0, you should define their values explicitly or use "Cookie::create()" instead.
  87. * added `matchPort()` in RequestMatcher
  89. 4.1.3
  90. -----
  92. * [BC BREAK] Support for the IIS-only `X_ORIGINAL_URL` and `X_REWRITE_URL`
  93. HTTP headers has been dropped for security reasons.
  95. 4.1.0
  96. -----
  98. * Query string normalization uses `parse_str()` instead of custom parsing logic.
  99. * Passing the file size to the constructor of the `UploadedFile` class is deprecated.
  100. * The `getClientSize()` method of the `UploadedFile` class is deprecated. Use `getSize()` instead.
  101. * added `RedisSessionHandler` to use Redis as a session storage
  102. * The `get()` method of the `AcceptHeader` class now takes into account the
  103. `*` and `*/*` default values (if they are present in the Accept HTTP header)
  104. when looking for items.
  105. * deprecated `Request::getSession()` when no session has been set. Use `Request::hasSession()` instead.
  106. * added `CannotWriteFileException`, `ExtensionFileException`, `FormSizeFileException`,
  107. `IniSizeFileException`, `NoFileException`, `NoTmpDirFileException`, `PartialFileException` to
  108. handle failed `UploadedFile`.
  109. * added `MigratingSessionHandler` for migrating between two session handlers without losing sessions
  110. * added `HeaderUtils`.
  112. 4.0.0
  113. -----
  115. * the `Request::setTrustedHeaderName()` and `Request::getTrustedHeaderName()`
  116. methods have been removed
  117. * the `Request::HEADER_CLIENT_IP` constant has been removed, use
  118. `Request::HEADER_X_FORWARDED_FOR` instead
  119. * the `Request::HEADER_CLIENT_HOST` constant has been removed, use
  120. `Request::HEADER_X_FORWARDED_HOST` instead
  121. * the `Request::HEADER_CLIENT_PROTO` constant has been removed, use
  122. `Request::HEADER_X_FORWARDED_PROTO` instead
  123. * the `Request::HEADER_CLIENT_PORT` constant has been removed, use
  124. `Request::HEADER_X_FORWARDED_PORT` instead
  125. * checking for cacheable HTTP methods using the `Request::isMethodSafe()`
  126. method (by not passing `false` as its argument) is not supported anymore and
  127. throws a `\BadMethodCallException`
  128. * the `WriteCheckSessionHandler`, `NativeSessionHandler` and `NativeProxy` classes have been removed
  129. * setting session save handlers that do not implement `\SessionHandlerInterface` in
  130. `NativeSessionStorage::setSaveHandler()` is not supported anymore and throws a
  131. `\TypeError`
  133. 3.4.0
  134. -----
  136. * implemented PHP 7.0's `SessionUpdateTimestampHandlerInterface` with a new
  137. `AbstractSessionHandler` base class and a new `StrictSessionHandler` wrapper
  138. * deprecated the `WriteCheckSessionHandler`, `NativeSessionHandler` and `NativeProxy` classes
  139. * deprecated setting session save handlers that do not implement `\SessionHandlerInterface` in `NativeSessionStorage::setSaveHandler()`
  140. * deprecated using `MongoDbSessionHandler` with the legacy mongo extension; use it with the mongodb/mongodb package and ext-mongodb instead
  141. * deprecated `MemcacheSessionHandler`; use `MemcachedSessionHandler` instead
  143. 3.3.0
  144. -----
  146. * the `Request::setTrustedProxies()` method takes a new `$trustedHeaderSet` argument,
  147. see https://symfony.com/doc/current/deployment/proxies.html for more info,
  148. * deprecated the `Request::setTrustedHeaderName()` and `Request::getTrustedHeaderName()` methods,
  149. * added `File\Stream`, to be passed to `BinaryFileResponse` when the size of the served file is unknown,
  150. disabling `Range` and `Content-Length` handling, switching to chunked encoding instead
  151. * added the `Cookie::fromString()` method that allows to create a cookie from a
  152. raw header string
  154. 3.1.0
  155. -----
  157. * Added support for creating `JsonResponse` with a string of JSON data
  159. 3.0.0
  160. -----
  162. * The precedence of parameters returned from `Request::get()` changed from "GET, PATH, BODY" to "PATH, GET, BODY"
  164. 2.8.0
  165. -----
  167. * Finding deep items in `ParameterBag::get()` is deprecated since version 2.8 and
  168. will be removed in 3.0.
  170. 2.6.0
  171. -----
  173. * PdoSessionHandler changes
  174. - implemented different session locking strategies to prevent loss of data by concurrent access to the same session
  175. - [BC BREAK] save session data in a binary column without base64_encode
  176. - [BC BREAK] added lifetime column to the session table which allows to have different lifetimes for each session
  177. - implemented lazy connections that are only opened when a session is used by either passing a dsn string
  178. explicitly or falling back to session.save_path ini setting
  179. - added a createTable method that initializes a correctly defined table depending on the database vendor
  181. 2.5.0
  182. -----
  184. * added `JsonResponse::setEncodingOptions()` & `JsonResponse::getEncodingOptions()` for easier manipulation
  185. of the options used while encoding data to JSON format.
  187. 2.4.0
  188. -----
  190. * added RequestStack
  191. * added Request::getEncodings()
  192. * added accessors methods to session handlers
  194. 2.3.0
  195. -----
  197. * added support for ranges of IPs in trusted proxies
  198. * `UploadedFile::isValid` now returns false if the file was not uploaded via HTTP (in a non-test mode)
  199. * Improved error-handling of `\Symfony\Component\HttpFoundation\Session\Storage\Handler\PdoSessionHandler`
  200. to ensure the supplied PDO handler throws Exceptions on error (as the class expects). Added related test cases
  201. to verify that Exceptions are properly thrown when the PDO queries fail.
  203. 2.2.0
  204. -----
  206. * fixed the Request::create() precedence (URI information always take precedence now)
  207. * added Request::getTrustedProxies()
  208. * deprecated Request::isProxyTrusted()
  209. * [BC BREAK] JsonResponse does not turn a top level empty array to an object anymore, use an ArrayObject to enforce objects
  210. * added a IpUtils class to check if an IP belongs to a CIDR
  211. * added Request::getRealMethod() to get the "real" HTTP method (getMethod() returns the "intended" HTTP method)
  212. * disabled _method request parameter support by default (call Request::enableHttpMethodParameterOverride() to
  213. enable it, and Request::getHttpMethodParameterOverride() to check if it is supported)
  214. * Request::splitHttpAcceptHeader() method is deprecated and will be removed in 2.3
  215. * Deprecated Flashbag::count() and \Countable interface, will be removed in 2.3
  217. 2.1.0
  218. -----
  220. * added Request::getSchemeAndHttpHost() and Request::getUserInfo()
  221. * added a fluent interface to the Response class
  222. * added Request::isProxyTrusted()
  223. * added JsonResponse
  224. * added a getTargetUrl method to RedirectResponse
  225. * added support for streamed responses
  226. * made Response::prepare() method the place to enforce HTTP specification
  227. * [BC BREAK] moved management of the locale from the Session class to the Request class
  228. * added a generic access to the PHP built-in filter mechanism: ParameterBag::filter()
  229. * made FileBinaryMimeTypeGuesser command configurable
  230. * added Request::getUser() and Request::getPassword()
  231. * added support for the PATCH method in Request
  232. * removed the ContentTypeMimeTypeGuesser class as it is deprecated and never used on PHP 5.3
  233. * added ResponseHeaderBag::makeDisposition() (implements RFC 6266)
  234. * made mimetype to extension conversion configurable
  235. * [BC BREAK] Moved all session related classes and interfaces into own namespace, as
  236. `Symfony\Component\HttpFoundation\Session` and renamed classes accordingly.
  237. Session handlers are located in the subnamespace `Symfony\Component\HttpFoundation\Session\Handler`.
  238. * SessionHandlers must implement `\SessionHandlerInterface` or extend from the
  239. `Symfony\Component\HttpFoundation\Storage\Handler\NativeSessionHandler` base class.
  240. * Added internal storage driver proxy mechanism for forward compatibility with
  241. PHP 5.4 `\SessionHandler` class.
  242. * Added session handlers for custom Memcache, Memcached and Null session save handlers.
  243. * [BC BREAK] Removed `NativeSessionStorage` and replaced with `NativeFileSessionHandler`.
  244. * [BC BREAK] `SessionStorageInterface` methods removed: `write()`, `read()` and
  245. `remove()`. Added `getBag()`, `registerBag()`. The `NativeSessionStorage` class
  246. is a mediator for the session storage internals including the session handlers
  247. which do the real work of participating in the internal PHP session workflow.
  248. * [BC BREAK] Introduced mock implementations of `SessionStorage` to enable unit
  249. and functional testing without starting real PHP sessions. Removed
  250. `ArraySessionStorage`, and replaced with `MockArraySessionStorage` for unit
  251. tests; removed `FilesystemSessionStorage`, and replaced with`MockFileSessionStorage`
  252. for functional tests. These do not interact with global session ini
  253. configuration values, session functions or `$_SESSION` superglobal. This means
  254. they can be configured directly allowing multiple instances to work without
  255. conflicting in the same PHP process.
  256. * [BC BREAK] Removed the `close()` method from the `Session` class, as this is
  257. now redundant.
  258. * Deprecated the following methods from the Session class: `setFlash()`, `setFlashes()`
  259. `getFlash()`, `hasFlash()`, and `removeFlash()`. Use `getFlashBag()` instead
  260. which returns a `FlashBagInterface`.
  261. * `Session->clear()` now only clears session attributes as before it cleared
  262. flash messages and attributes. `Session->getFlashBag()->all()` clears flashes now.
  263. * Session data is now managed by `SessionBagInterface` to better encapsulate
  264. session data.
  265. * Refactored session attribute and flash messages system to their own
  266. `SessionBagInterface` implementations.
  267. * Added `FlashBag`. Flashes expire when retrieved by `get()` or `all()`. This
  268. implementation is ESI compatible.
  269. * Added `AutoExpireFlashBag` (default) to replicate Symfony 2.0.x auto expire
  270. behavior of messages auto expiring after one page page load. Messages must
  271. be retrieved by `get()` or `all()`.
  272. * Added `Symfony\Component\HttpFoundation\Attribute\AttributeBag` to replicate
  273. attributes storage behavior from 2.0.x (default).
  274. * Added `Symfony\Component\HttpFoundation\Attribute\NamespacedAttributeBag` for
  275. namespace session attributes.
  276. * Flash API can stores messages in an array so there may be multiple messages
  277. per flash type. The old `Session` class API remains without BC break as it
  278. will allow single messages as before.
  279. * Added basic session meta-data to the session to record session create time,
  280. last updated time, and the lifetime of the session cookie that was provided
  281. to the client.
  282. * Request::getClientIp() method doesn't take a parameter anymore but bases
  283. itself on the trustProxy parameter.
  284. * Added isMethod() to Request object.
  285. * [BC BREAK] The methods `getPathInfo()`, `getBaseUrl()` and `getBasePath()` of
  286. a `Request` now all return a raw value (vs a urldecoded value before). Any call
  287. to one of these methods must be checked and wrapped in a `rawurldecode()` if
  288. needed.