Add more #[\SensitiveParameter]

symfony · Nov 21, 2022 · 12d6ef4 · 12d6ef4
1 parent 2fd8656
commit 12d6ef4
Show file tree

Hide file tree

Showing 4 changed files with 4 additions and 4 deletions.
diff --git a/CsrfTokenManager.php b/CsrfTokenManager.php
@@ -79,7 +79,7 @@ public function getToken(string $tokenId): CsrfToken
         return new CsrfToken($tokenId, $this->randomize($value));
     }
 
-    public function refreshToken(#[\SensitiveParameter] string $tokenId): CsrfToken
+    public function refreshToken(string $tokenId): CsrfToken
     {
         $namespacedId = $this->getNamespace().$tokenId;
         $value = $this->generator->generateToken();

diff --git a/TokenStorage/NativeSessionTokenStorage.php b/TokenStorage/NativeSessionTokenStorage.php
@@ -51,7 +51,7 @@ public function getToken(string $tokenId): string
         return (string) $_SESSION[$this->namespace][$tokenId];
     }
 
-    public function setToken(string $tokenId, string $token)
+    public function setToken(string $tokenId, #[\SensitiveParameter] string $token)
     {
         if (!$this->sessionStarted) {
             $this->startSession();

diff --git a/TokenStorage/SessionTokenStorage.php b/TokenStorage/SessionTokenStorage.php
@@ -56,7 +56,7 @@ public function getToken(string $tokenId): string
         return (string) $session->get($this->namespace.'/'.$tokenId);
     }
 
-    public function setToken(string $tokenId, string $token)
+    public function setToken(string $tokenId, #[\SensitiveParameter] string $token)
     {
         $session = $this->getSession();
         if (!$session->isStarted()) {

diff --git a/TokenStorage/TokenStorageInterface.php b/TokenStorage/TokenStorageInterface.php
@@ -28,7 +28,7 @@ public function getToken(string $tokenId): string;
     /**
      * Stores a CSRF token.
      */
-    public function setToken(string $tokenId, string $token);
+    public function setToken(string $tokenId, #[\SensitiveParameter] string $token);
 
     /**
      * Removes a CSRF token.