minor #19867 The #[IsCsrfTokenValid] attribute eliminates the need for a request parameter in your method. (rcsofttech85)

OskarStark · OskarStark · commit 8de101e8525b · 2024-05-07T21:19:28.000+02:00
This PR was merged into the 7.1 branch. Discussion ---------- The #[IsCsrfTokenValid] attribute eliminates the need for a request parameter in your method. #[IsCsrfTokenValid] attribute in Symfony 7.1 does not require you to include a request parameter in the method itself. The attribute uses the request object internally to access the submitted data for validation. for example ```php #[Route(path: '/admin/post/delete', name: 'admin_post_delete', methods: ['POST'])] #[IsCsrfTokenValid('delete-item')] public function adminPostDelete(): Response { dd('deleted'); } ``` Commits ------- 979891b Removed unnecessary Request parameter
diff --git a/security/csrf.rst b/security/csrf.rst
@@ -176,7 +176,7 @@ attribute on the controller action::
     // ...
 
     #[IsCsrfTokenValid('delete-item', tokenKey: 'token')]
-    public function delete(Request $request): Response
+    public function delete(): Response
     {
         // ... do something, like deleting an object
     }

Original file line number	Diff line number	Diff line change
`@@ -176,7 +176,7 @@ attribute on the controller action::`
`176`	`176`	`// ...`
`177`	`177`
`178`	`178`	`#[IsCsrfTokenValid('delete-item', tokenKey: 'token')]`
`179`		`- public function delete(Request $request): Response`
	`179`	`+ public function delete(): Response`
`180`	`180`	`{`
`181`	`181`	`// ... do something, like deleting an object`
`182`	`182`	`}`