Security provides an infrastructure for sophisticated authorization systems, which makes it possible to easily separate the actual authorization logic from so called user providers that hold the users credentials.

Related tags

Security php http security symfony component symfony-component
Overview
You might also like...
A php.ini scanner for best security practices

Scanner for PHP.ini The Iniscan is a tool designed to scan the given php.ini file for common security practices and report back results. Currently it

psec.io 1.5k Dec 5, 2022
PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application

PHPIDS PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web ap

null 752 Jan 3, 2023
FunboxEasy - Proving Grounds - Offensive Security
FunboxEasy - Proving Grounds - Offensive Security

FunboxEasy - Proving Grounds - Offensive Security

Hafiizh Ghulam 1 Oct 28, 2021
Php Security Class

Security Advanced Security Class for Php Features Secure From XSS, CSRF, SQL Injection, BASE64, RFI, LFI, Command Injection, Block Suspicious Request

Ömer Faruk Demirel 5 Dec 2, 2022
Windows and macOS Hardening Interface to make security more accessible.

Welcome to the Hardening Interface Introduction To use HardeningKitty service more easily, we have created an interface which permits better understan

ataumo 24 Dec 5, 2022
PHP frontend for security.symfony.com

SensioLabs Security Checker WARNING: Don't use this piece of software anymore as the underlying web service will stop working at the end of January 20

SensioLabs 2k Dec 25, 2022
Security advisories as a simple composer exclusion list, updated daily

Roave Security Advisories This package ensures that your application doesn't have installed dependencies with known security vulnerabilities. Installa

Roave, LLC 2.5k Jan 5, 2023
Security Component - Guard

The Guard component brings many layers of authentication together, making it much easier to create complex authentication systems where you have total control.

Symfony 1.4k Jan 5, 2023
Security issues for Magento have left a big question mark in the community of online stores
Security issues for Magento have left a big question mark in the community of online stores

Magento 2 Security extension FREE. Security extension gives store owners the ability to detect the IP addresses that are intentionally attacking their store at any given time. Therefore, they have timely measures to prevent this issue such as blocking those IP addresses or sending warning emails to store owners.

Mageplaza 40 Apr 1, 2022
Releases(v6.1.9)

  • v6.1.9(Dec 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.8...v6.1.9)

    • bug #48292 Throw InvalidLoginLinkException on missing parameter (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.17(Dec 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.16...v6.0.17)

    • bug #48292 Throw InvalidLoginLinkException on missing parameter (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.17(Dec 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.16...v5.4.17)

    • bug #48292 Throw InvalidLoginLinkException on missing parameter (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v6.2.2(Dec 16, 2022)

  • v6.2.0(Nov 30, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.2.0-RC2...v6.2.0)

    • bug #48292 Throw InvalidLoginLinkException on missing parameter (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v6.2.0-RC1(Nov 25, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.2.0-BETA3...v6.2.0-RC1)

    • bug #48285 Support loading UserBadge directly from accessToken (Jeroeny)
    • bug #48274 Add more #[\SensitiveParameter] (fancyweb)
    Source code(tar.gz)
    Source code(zip)

  • v6.2.0-BETA3(Nov 19, 2022)

  • v6.1.7(Oct 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.6...v6.1.7)

    • bug #47955 Add missing args to trigger_deprecation (alamirault)
    • bug #47932 Throw LogicException instead of Error when trying to generate logout-… (addiks)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.15(Oct 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.14...v6.0.15)

    • bug #47955 Add missing args to trigger_deprecation (alamirault)
    • bug #47932 Throw LogicException instead of Error when trying to generate logout-… (addiks)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.15(Oct 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.14...v5.4.15)

    • bug #47955 Add missing args to trigger_deprecation (alamirault)
    • bug #47932 Throw LogicException instead of Error when trying to generate logout-… (addiks)
    Source code(tar.gz)
    Source code(zip)

  • v4.4.48(Oct 28, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v4.4.47...v4.4.48)

    • bug #47932 Throw LogicException instead of Error when trying to generate logout-… (addiks)
    Source code(tar.gz)
    Source code(zip)

  • v6.2.0-BETA1(Oct 24, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.6...v6.2.0-BETA1)

    • feature #47595 Extract request matchers for better reusability (fabpot)
    • feature #47363 Replace ArgumentValueResolverInterface by ValueResolverInterface (nicolas-grekas)
    • feature #46428 Access Token Authenticator (Spomky)
    • feature #46978 Allow using expressions with the #[IsGranted] attribute (HypeMC)
    • feature #45034 Rename Request::getContentType to getContentTypeFormat (MarkPedron)
    • feature #46567 Set custom lifetime for login link (mbrodala, fabpot)
    • feature #46338 Allow configuring a target url when switching user (94noni)
    • feature #46118 Don't allow empty username or empty password (bikalbasnet)
    • feature #46906 Add #[Template()] to describe how to render arrays returned by controllers (nicolas-grekas)
    • feature #46907 Add #[IsGranted()] (nicolas-grekas)
    • feature #46183 Hide sensitive information with SensitiveParameter attribute (GromNaN)
    • feature #46584 Enforce maximum username length in UserBadge (wouterj)
    • feature #46094 Move the Security helper to SecurityBundle (chalasr)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.6(Oct 12, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.5...v6.1.6)

    • bug #47317 Fix login url matching when app is not run with url rewriting or from a sub folder (sgehrig)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.14(Oct 12, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.13...v6.0.14)

    • bug #47317 Fix login url matching when app is not run with url rewriting or from a sub folder (sgehrig)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.5(Sep 30, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.4...v6.1.5)

    • bug #47488 Fix valid remember-me token exposure to the second consequent request (Ivan Kurnosov)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.13(Sep 30, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.12...v6.0.13)

    • bug #47488 Fix valid remember-me token exposure to the second consequent request (Ivan Kurnosov)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.13(Sep 30, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.12...v5.4.13)

    • bug #47317 Fix login url matching when app is not run with url rewriting or from a sub folder (sgehrig)
    • bug #47488 Fix valid remember-me token exposure to the second consequent request (Ivan Kurnosov)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.4(Aug 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.3...v6.1.4)

    • bug #47368 Count remember me cookie parts before accessing the second (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.12(Aug 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.11...v6.0.12)

    • bug #47368 Count remember me cookie parts before accessing the second (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.12(Aug 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.11...v5.4.12)

    • bug #47368 Count remember me cookie parts before accessing the second (MatTheCat)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.3(Jul 29, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.2...v6.1.3)

    • bug #47069 Allow redirect after login to absolute URLs (Tim Ward)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.11(Jul 29, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.10...v6.0.11)

    • bug #47069 Allow redirect after login to absolute URLs (Tim Ward)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.11(Jul 29, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.10...v5.4.11)

    • bug #47069 Allow redirect after login to absolute URLs (Tim Ward)
    Source code(tar.gz)
    Source code(zip)

  • v4.4.44(Jul 29, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v4.4.43...v4.4.44)

    • bug #47069 Allow redirect after login to absolute URLs (Tim Ward)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.2(Jun 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.1.1...v6.1.2)

    • bug #46760 Fix double authentication via RememberMe resulting in wrong RememberMe cookie being set in client (heiglandreas)
    Source code(tar.gz)
    Source code(zip)

  • v6.0.10(Jun 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.9...v6.0.10)

    • bug #46760 Fix double authentication via RememberMe resulting in wrong RememberMe cookie being set in client (heiglandreas)
    Source code(tar.gz)
    Source code(zip)

  • v5.4.10(Jun 26, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v5.4.9...v5.4.10)

    • bug #46760 Fix double authentication via RememberMe resulting in wrong RememberMe cookie being set in client (heiglandreas)
    Source code(tar.gz)
    Source code(zip)

  • v6.1.1(Jun 9, 2022)

  • v6.1.0(May 27, 2022)

  • v6.0.9(May 27, 2022)

    Changelog (https://github.com/symfony/security-http/compare/v6.0.8...v6.0.9)

    • bug #46317 Ignore invalid URLs found in failure/success paths (nicolas-grekas)
    • bug #46262 Fix removing listeners when using first-class callable syntax (javer)
    Source code(tar.gz)
    Source code(zip)
Owner
Symfony
Symfony
GitHub https://symfony.com/components/Security
The Security component provides a complete security system for your web application.

Security Component The Security component provides a complete security system for your web application. It ships with facilities for authenticating us

Symfony 1.2k Jan 1, 2023
A multitool library offering access to recommended security related libraries, standardised implementations of security defences, and secure implementations of commonly performed tasks.

SecurityMultiTool A multitool library offering access to recommended security related libraries, standardised implementations of security defences, an

Pádraic Brady 131 Oct 30, 2022
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

About SecLists SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected i

Daniel Miessler 44.1k Jan 7, 2023
Laravel Security was created by, and is maintained by Graham Campbell, and is a voku/anti-xss wrapper for Laravel, using graham-campbell/security-core

Laravel Security Laravel Security was created by, and is maintained by Graham Campbell, and is a voku/anti-xss wrapper for Laravel, using graham-campb

Graham Campbell 170 Nov 20, 2022
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code.

Floe design + technologies 654 Dec 28, 2022
Github Action which checks Security issues scanning package manager files

security-checker-action This action checks your composer.lock for known vulnerabilities in your package dependencies. Inputs lock optional The path to

Druid 0 May 5, 2022
Security CSRF (cross-site request forgery) component provides a class CsrfTokenManager for generating and validating CSRF tokens.

Security Component - CSRF The Security CSRF (cross-site request forgery) component provides a class CsrfTokenManager for generating and validating CSR

Symfony 1.5k Jan 3, 2023
WordPress plugin that provides instant switching between user accounts.

User Switching Stable tag: 1.5.7 Requires at least: 3.7 Tested up to: 5.7 Requires PHP: 5.3 License: GPL v2 or later Tags: users, profiles, user switc

John Blackbourn 166 Dec 4, 2022
A PHP wrapper around the OpenSSL extension that provides a user-friendly interface for dealing with OpenSSL.

php-openssl-proxy About A PHP wrapper around the OpenSSL extension that provides a user-friendly interface for dealing with OpenSSL. What's up with th

Adão Pedro 4 Mar 5, 2022
A database of PHP security advisories

PHP Security Advisories Database The PHP Security Advisories Database references known security vulnerabilities in various PHP projects and libraries.

null 1.9k Dec 18, 2022