From d312f9f6953558584126082fc003139ba4c56d83 Mon Sep 17 00:00:00 2001 From: NICOLAU Bastien Date: Thu, 26 Mar 2026 13:15:02 +0100 Subject: [PATCH] fix: remove deprecated eraseCredentials() usage `eraseCredentials()` was deprecated in Symfony 7.3 and removed in 8.0. - Remove empty `eraseCredentials()` from `CasUser` - Remove `$security->getToken()?->eraseCredentials()` call from `Logout` controller - Remove unused `Security` dependency from `Logout` controller Ref: https://symfony.com/blog/new-in-symfony-7-3-security-improvements#deprecate-erasecredentials-method --- src/Controller/Logout.php | 3 --- src/Security/Core/User/CasUser.php | 2 -- 2 files changed, 5 deletions(-) diff --git a/src/Controller/Logout.php b/src/Controller/Logout.php index f3a76e4..c0cee68 100644 --- a/src/Controller/Logout.php +++ b/src/Controller/Logout.php @@ -14,7 +14,6 @@ use EcPhp\CasLib\Contract\CasInterface; use Psr\Http\Message\ResponseInterface; use Psr\Http\Message\ServerRequestInterface; -use Symfony\Bundle\SecurityBundle\Security; use Symfony\Component\HttpFoundation\RedirectResponse; use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface; use Throwable; @@ -24,7 +23,6 @@ final class Logout public function __invoke( ServerRequestInterface $request, CasInterface $cas, - Security $security, TokenStorageInterface $tokenStorage ): RedirectResponse|ResponseInterface { try { @@ -36,7 +34,6 @@ public function __invoke( return new RedirectResponse('/'); } - $security->getToken()?->eraseCredentials(); $tokenStorage->setToken(null); return $response; diff --git a/src/Security/Core/User/CasUser.php b/src/Security/Core/User/CasUser.php index e0fdfe4..f82e8c9 100644 --- a/src/Security/Core/User/CasUser.php +++ b/src/Security/Core/User/CasUser.php @@ -25,8 +25,6 @@ public function __toString(): string return (string) $this->get('user'); } - public function eraseCredentials(): void {} - public function get(string $key, mixed $default = null): mixed { return $this->payload[$key] ?? $default;