Le 16/06/2011 13:47, Kaipi Yann a écrit :
Hi,
I think there is a problem with response code sent by Symfony.
On my project I have a form authentification for almost all the pages.
When I try to access a page wich is protected Symfony send me a 302
redirect to the login page. Why don't we send a 403 Forbidden ?
Regards.
If a user is authenticated, it will send a 403. If he is not
authenticated, it first asks the user to authenticate and then gives it
the possibility to retry.
--
Christophe | Stof
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony developers" group.
To post to this group, send email to symfony-devs@googlegroups.com
To unsubscribe from this group, send email to
symfony-devs+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-devs?hl=en
