Weave Code
Code Weaver
Helps Laravel developers discover, compare, and choose open-source packages. See popularity, security, maintainers, and scores at a glance to make better decisions.
Feedback
Share your thoughts, report bugs, or suggest improvements.
Subject
Message
Log in Register
Home
Packages
Security Core
Release Notes

Security Core Laravel Package

symfony/security-core

Symfony Security Core provides the core building blocks for authentication and authorization: tokens, voters, role hierarchies, access decision management, and user providers. Use it to implement flexible permission checks and separate security logic from user storage.

View on GitHub
Deep Wiki
Context7
v8.1.0-RC1

Changelog (https://github.com/symfony/security-core/compare/v8.1.0-BETA3...v8.1.0-RC1)

  • bug #64343 Harden __unserialize against __toString trampolines (@nicolas-grekas)
v8.0.13

Changelog (https://github.com/symfony/security-core/compare/v8.0.12...v8.0.13)

  • bug #64343 Harden __unserialize against __toString trampolines (@nicolas-grekas)
v7.4.13

Changelog (https://github.com/symfony/security-core/compare/v7.4.12...v7.4.13)

  • bug #64343 Harden __unserialize against __toString trampolines (@nicolas-grekas)
v6.4.41

Changelog (https://github.com/symfony/security-core/compare/v6.4.39...v6.4.41)

  • bug #64343 Harden __unserialize against __toString trampolines (@nicolas-grekas)
v8.1.0-BETA3

Changelog (https://github.com/symfony/security-core/compare/v8.1.0-BETA2...v8.1.0-BETA3)

  • bug #64213 Fix impersonation being deauthenticated on every request (@nicolas-grekas)
v8.0.12

Changelog (https://github.com/symfony/security-core/compare/v8.0.11...v8.0.12)

  • bug #64213 Fix impersonation being deauthenticated on every request (@nicolas-grekas)
v7.4.12

Changelog (https://github.com/symfony/security-core/compare/v7.4.11...v7.4.12)

  • bug #64213 Fix impersonation being deauthenticated on every request (@nicolas-grekas)
v8.1.0-BETA2

Changelog (https://github.com/symfony/security-core/compare/v8.1.0-BETA1...v8.1.0-BETA2)

  • bug #64195 Remove the legacy nested unserialize() call from token and exception classes (@nicolas-grekas)
v8.0.11

Changelog (https://github.com/symfony/security-core/compare/v8.0.3...v8.0.11)

  • bug #64195 Remove the legacy nested unserialize() call from token and exception classes (@nicolas-grekas)
v7.4.11

Changelog (https://github.com/symfony/security-core/compare/v7.4.3...v7.4.11)

  • bug #64195 Remove the legacy nested unserialize() call from token and exception classes (@nicolas-grekas)
v6.4.39

Changelog (https://github.com/symfony/security-core/compare/v6.4.31...v6.4.39)

  • bug #64195 Remove the legacy nested unserialize() call from token and exception classes (@nicolas-grekas)
v8.1.0-BETA1
v8.0.8

Changelog (https://github.com/symfony/security-core/compare/v8.0.7...v8.0.8)

  • no significant changes
v7.4.8

Changelog (https://github.com/symfony/security-core/compare/v7.4.7...v7.4.8)

  • no significant changes
v6.4.36

Changelog (https://github.com/symfony/security-core/compare/v6.4.35...v6.4.36)

  • no significant changes
v8.0.4

Changelog (https://github.com/symfony/security-core/compare/v8.0.3...v8.0.4)

  • no significant changes
v7.4.4

Changelog (https://github.com/symfony/security-core/compare/v7.4.3...v7.4.4)

  • no significant changes
v7.3.10

Changelog (https://github.com/symfony/security-core/compare/v7.3.9...v7.3.10)

  • no significant changes
v8.0.3

Changelog (https://github.com/symfony/security-core/compare/v8.0.2...v8.0.3)

  • bug symfony/symfony#62796 [Security] do not use PHPUnit mock objects without configured expectations (@xabbuh)
v7.4.3

Changelog (https://github.com/symfony/security-core/compare/v7.4.2...v7.4.3)

  • bug symfony/symfony#62796 [Security] do not use PHPUnit mock objects without configured expectations (@xabbuh)
v7.3.9

Changelog (https://github.com/symfony/security-core/compare/v7.3.8...v7.3.9)

  • bug symfony/symfony#62796 [Security] do not use PHPUnit mock objects without configured expectations (@xabbuh)
v6.4.31

Changelog (https://github.com/symfony/security-core/compare/v6.4.30...v6.4.31)

  • bug symfony/symfony#62796 [Security] do not use PHPUnit mock objects without configured expectations (@xabbuh)
v7.4.0

Changelog (https://github.com/symfony/security-core/compare/v7.4.0-RC3...v7.4.0)

  • feature symfony/symfony#62469 [Security] Keep SymfonyCasts as backers of the Security components v7.4 🤗 (@nicolas-grekas)
v7.4.0-RC1

Changelog (https://github.com/symfony/security-core/compare/v7.4.0-BETA2...v7.4.0-RC1)

  • no significant changes
v7.3.5

Changelog (https://github.com/symfony/security-core/compare/v7.3.4...v7.3.5)

  • no significant changes
v6.4.27

Changelog (https://github.com/symfony/security-core/compare/v6.4.26...v6.4.27)

  • no significant changes
v8.0.0-BETA1

Changelog (https://github.com/symfony/security-core/compare/v7.3.4...v8.0.0-BETA1)

  • feature symfony/symfony#60085 [Security] improve VoteObject adding extraData for give more possibilities to AccessDecicsionStrategy (@eltharin)
  • feature symfony/symfony#61760 [Security] remove the user FQCN from remember me cookies (@xabbuh)
  • feature symfony/symfony#61743 [Security] deprecate the FQCN properties of PersistentToken and RememberMeDetails (@xabbuh)
  • feature symfony/symfony#61654 [Security] Deprecate PersistentToken::getClass() and RememberMeDetails::getUserFqcn() in order to remove the user FQCN from the remember-me cookie in 8.0 (@nicolas-grekas)
  • feature symfony/symfony#61034 [Security][SecurityBundle] Dump role hierarchy as mermaid chart (@damienfern)
  • feature symfony/symfony#61057 [Security] Improve performance of RoleHierarchy::buildRoleMap method (@simonjamain-gp, @simonjamain)
  • feature symfony/symfony#61063 [Validator] remove support for generic constraint option handling (@xabbuh)
  • feature symfony/symfony#61187 Declare new parameters on interfaces and methods explicitly (@nicolas-grekas)
  • feature symfony/symfony#61011 [Security] Remove deprecated RememberMeToken::getSecret() (@ktherage)
  • feature symfony/symfony#60801 [Validator] deprecate handling options in the base Constraint class (@xabbuh)
  • feature symfony/symfony#60742 [Ldap][Security] Remove deprecated eraseCredentials() from (User|Token)Interface (@chalasr)
  • feature symfony/symfony#60697 Enforce return types on all components (@nicolas-grekas)
  • feature symfony/symfony#60639 Bump Symfony 8 to PHP >= 8.4 (@nicolas-grekas)
v7.4.0-BETA1

Changelog (https://github.com/symfony/security-core/compare/v7.3.4...v7.4.0-BETA1)

  • feature symfony/symfony#60085 [Security] improve VoteObject adding extraData for give more possibilities to AccessDecicsionStrategy (@eltharin)
  • feature symfony/symfony#61743 [Security] deprecate the FQCN properties of PersistentToken and RememberMeDetails (@xabbuh)
  • feature symfony/symfony#61654 [Security] Deprecate PersistentToken::getClass() and RememberMeDetails::getUserFqcn() in order to remove the user FQCN from the remember-me cookie in 8.0 (@nicolas-grekas)
  • feature symfony/symfony#61034 [Security][SecurityBundle] Dump role hierarchy as mermaid chart (@damienfern)
  • feature symfony/symfony#61057 [Security] Improve performance of RoleHierarchy::buildRoleMap method (@simonjamain-gp, @simonjamain)
  • feature symfony/symfony#60801 [Validator] deprecate handling options in the base Constraint class (@xabbuh)
v7.3.4

Changelog (https://github.com/symfony/security-core/compare/v7.3.3...v7.3.4)

  • bug symfony/symfony#61830 [Security] Fix preload warning in AuthorizationChecker (@MatTheCat)
  • bug symfony/symfony#61595 [Security] Pass attributes to nested ChainUserProviders (@valtzu)
  • bug symfony/symfony#61548 [Security] Fix attribute-based chained user providers (@valtzu)
v6.4.26

Changelog (https://github.com/symfony/security-core/compare/v6.4.25...v6.4.26)

  • bug symfony/symfony#61595 [Security] Pass attributes to nested ChainUserProviders (@valtzu)
  • bug symfony/symfony#61548 [Security] Fix attribute-based chained user providers (@valtzu)
v7.3.3

Changelog (https://github.com/symfony/security-core/compare/v7.3.2...v7.3.3)

  • no significant changes
v6.4.25

Changelog (https://github.com/symfony/security-core/compare/v6.4.24...v6.4.25)

  • no significant changes
v7.3.2

Changelog (https://github.com/symfony/security-core/compare/v7.3.1...v7.3.2)

  • bug symfony/symfony#61194 [Security] Fix added $token argument to UserCheckerInterface::checkPostAuth() (@nicolas-grekas)
v7.2.9

Changelog (https://github.com/symfony/security-core/compare/v7.2.8...v7.2.9)

  • bug symfony/symfony#61194 [Security] Fix added $token argument to UserCheckerInterface::checkPostAuth() (@nicolas-grekas)
v6.4.24

Changelog (https://github.com/symfony/security-core/compare/v6.4.23...v6.4.24)

  • no significant changes
v7.3.1

Changelog (https://github.com/symfony/security-core/compare/v7.3.0...v7.3.1)

  • bug symfony/symfony#60840 [Validator] Add missing HasNamedArguments to some constraints (@jkgroupe)
  • bug symfony/symfony#60688 [Security] Keep roles when serializing tokens (@nicolas-grekas)
v7.2.8

Changelog (https://github.com/symfony/security-core/compare/v7.2.7...v7.2.8)

  • no significant changes
v6.4.23

Changelog (https://github.com/symfony/security-core/compare/v6.4.22...v6.4.23)

  • no significant changes
v7.3.0

Changelog (https://github.com/symfony/security-core/compare/v7.3.0-RC1...v7.3.0)

  • no significant changes
v7.2.7

Changelog (https://github.com/symfony/security-core/compare/v7.2.6...v7.2.7)

  • no significant changes
v6.4.22

Changelog (https://github.com/symfony/security-core/compare/v6.4.21...v6.4.22)

  • no significant changes
v7.3.0-RC1

Changelog (https://github.com/symfony/security-core/compare/v7.3.0-BETA2...v7.3.0-RC1)

  • bug symfony/symfony#60401 Passing more than one Security attribute is not supported (@santysisi)
v7.3.0-BETA1

Changelog (https://github.com/symfony/security-core/compare/v7.2.6...v7.3.0-BETA1)

  • feature symfony/symfony#50027 [Security] OAuth2 Introspection Endpoint (RFC7662) (@Spomky)
  • feature symfony/symfony#59805 [Security] Improve DX of recent additions (@nicolas-grekas)
  • feature symfony/symfony#59150 [Security] Allow using a callable with #[IsGranted] (@alexandre-daubois)
  • feature symfony/symfony#59771 [Security] Add ability for voters to explain their vote (@nicolas-grekas)
  • feature symfony/symfony#59562 [Security] Support hashing the hashed password using crc32c when putting the user in the session (@nicolas-grekas)
  • feature symfony/symfony#59682 [Security] Deprecate UserInterface & TokenInterface's eraseCredentials() (@chalasr, @nicolas-grekas)
  • feature symfony/symfony#48142 [Security][SecurityBundle] User authorization checker (@natewiebe13)
v7.2.6

Changelog (https://github.com/symfony/security-core/compare/v7.2.5...v7.2.6)

  • no significant changes
v6.4.21

Changelog (https://github.com/symfony/security-core/compare/v6.4.20...v6.4.21)

  • no significant changes
Weaver

How can I help you explore Laravel packages today?

Conversation history is not saved when not logged in.
Prompt
Add packages to context
No packages found.
hexters/coinpayment
rjcodes/rjcms
act-training/laravel-permissions-manager
alimarchal/laravel-chart-of-accounts
babenkoivan/elastic-scout-driver
mkwebdesign/filament-watchdog-v5
renatomarinho/laravel-page-speed
zedmagdy/filament-business-hours
renatovdemoura/blade-elements-ui
devgeek/beacon-admin
benjamin-rqt/data-watcher-bundle
atriumphp/atrium
sandermuller/package-boost-laravel
sandermuller/boost-skills
redaxo/core
yusufgenc/filament-api-forge
l3aro/rating-star-for-filament
leek/filament-subtenant-scope
anil/file-picker
broqit/fields-ai