Security Http Versions Save

Changelog (https://github.com/symfony/security-http/compare/v6.3.7...v6.3.8)

• security symfony/symfony#cve-2023-46733 [Security] Fix possible session fixation when only the token changes (@RobertMe)

Changelog (https://github.com/symfony/security-http/compare/v5.4.30...v5.4.31)

• security symfony/symfony#cve-2023-46733 [Security] Fix possible session fixation when only the token changes (@RobertMe)

Changelog (https://github.com/symfony/security-http/compare/v5.4.29...v5.4.30)

• no significant changes

Changelog (https://github.com/symfony/security-http/compare/v6.3.6...v7.0.0-BETA1)

• feature symfony/symfony#51804 [Security] Make impersonation_path() argument mandatory and add impersonation_url() (@alexandre-daubois)
• feature symfony/symfony#50030 Add new twig bridge function to generate impersonation path (@PhilETaylor)
• feature symfony/symfony#51585 [Security] Add badge resolution to profiler (@Jean-Beru)
• feature symfony/symfony#51434 [Security] [Throttling] Hide username and client ip in logs (@Spomky)
• feature symfony/symfony#51250 Remove remaining experimental classes (@fabpot)
• feature symfony/symfony#51069 Add types to public and protected properties (@nicolas-grekas)
• feature symfony/symfony#50290 [Security] Make PersistentToken immutable and tell TokenProviderInterface::updateToken() implementations should accept DateTimeInterface (@nicolas-grekas)
• feature symfony/symfony#50852 [Components] Convert to native return types (@wouterj)
• feature symfony/symfony#50842 Add missing return types to magic methods (@wouterj)
• feature symfony/symfony#50873 Remove remaining deprecated code paths (@nicolas-grekas)
• feature symfony/symfony#50858 [HttpKernel] Remove deprecated code paths (@nicolas-grekas)
• feature symfony/symfony#50866 [Security] Remove deprecated code paths (@nicolas-grekas)
• feature symfony/symfony#50839 Remove BC layers related to new methods and new parameters (@nicolas-grekas)
• feature symfony/symfony#50404 Bump to PHP 8.2 minimum (@nicolas-grekas)

Changelog (https://github.com/symfony/security-http/compare/v6.3.6...v6.4.0-BETA1)

• feature symfony/symfony#51804 [Security] Make impersonation_path() argument mandatory and add impersonation_url() (@alexandre-daubois)
• feature symfony/symfony#50030 Add new twig bridge function to generate impersonation path (@PhilETaylor)
• feature symfony/symfony#51585 [Security] Add badge resolution to profiler (@Jean-Beru)
• feature symfony/symfony#51434 [Security] [Throttling] Hide username and client ip in logs (@Spomky)
• feature symfony/symfony#51250 Remove remaining experimental classes (@fabpot)
• feature symfony/symfony#50290 [Security] Make PersistentToken immutable and tell TokenProviderInterface::updateToken() implementations should accept DateTimeInterface (@nicolas-grekas)
• feature symfony/symfony#50842 Add missing return types to magic methods (@wouterj)

Changelog (https://github.com/symfony/security-http/compare/v6.3.5...v6.3.6)

• bug symfony/symfony#51858 [Security] Fix resetting traceable listeners (@chalasr)

Changelog (https://github.com/symfony/security-http/compare/v6.3.4...v6.3.5)

• no significant changes

Changelog (https://github.com/symfony/security-http/compare/v6.3.3...v6.3.4)

• bug symfony/symfony#51350 [Security] Prevent creating session in stateless firewalls (@Seb33300)
• bug symfony/symfony#51104 [Security] Fix loading user from UserBadge (@guillaumesmo)
• bug symfony/symfony#51445 [Security] FormLoginAuthenticator: fail for non-string password (@dmaicher)

Changelog (https://github.com/symfony/security-http/compare/v5.4.27...v5.4.28)

• bug symfony/symfony#51445 [Security] FormLoginAuthenticator: fail for non-string password (@dmaicher)

Changelog (https://github.com/symfony/security-http/compare/v6.3.1...v6.3.2)

• bug symfony/symfony#50552 [Security] Allow custom scheme to be used as redirection URIs (@Spomky)
• bug symfony/symfony#50582 [Security/Http] Fix false-string handling in RememberMeAuthenticator (@ossinkine)