From 2b37f862dd6d106a157783f13e3118e497b7b27e Mon Sep 17 00:00:00 2001
From: Alexander Schranz <alexander@sulu.io>
Date: Mon, 9 Dec 2024 12:49:53 +0100
Subject: [PATCH] Update framework bundle

---
 .env                           |  2 +-
 .env.dev                       |  4 ++++
 config/packages/csrf.yaml      | 16 ++++++++--------
 config/packages/framework.yaml |  3 +--
 symfony.lock                   |  6 +++---
 5 files changed, 17 insertions(+), 14 deletions(-)

diff --git a/.env b/.env
index 8d2460a8..7973eb7d 100644
--- a/.env
+++ b/.env
@@ -15,7 +15,7 @@
 # https://symfony.com/doc/current/best_practices.html#use-environment-variables-for-infrastructure-configuration
 
 ###> symfony/framework-bundle ###
-APP_ENV=prod
+APP_ENV=dev
 APP_SECRET='$ecretf0rt3st'
 #TRUSTED_PROXIES=127.0.0.1,127.0.0.2
 #TRUSTED_HOSTS=localhost,example.com
diff --git a/.env.dev b/.env.dev
index e69de29b..743e182a 100644
--- a/.env.dev
+++ b/.env.dev
@@ -0,0 +1,4 @@
+
+###> symfony/framework-bundle ###
+APP_SECRET=c9798d38335165263bcb913df2c4a79c
+###< symfony/framework-bundle ###
diff --git a/config/packages/csrf.yaml b/config/packages/csrf.yaml
index 40d40405..e723308a 100644
--- a/config/packages/csrf.yaml
+++ b/config/packages/csrf.yaml
@@ -1,11 +1,11 @@
 # Enable stateless CSRF protection for forms and logins/logouts
 framework:
     form:
-        csrf_protection:
-            token_id: submit
-
-    csrf_protection:
-        stateless_token_ids:
-            - submit
-            - authenticate
-            - logout
+#        csrf_protection:
+#            token_id: submit
+#
+#    csrf_protection:
+#        stateless_token_ids:
+#            - submit
+#            - authenticate
+#            - logout
diff --git a/config/packages/framework.yaml b/config/packages/framework.yaml
index ceea7e3a..7c0bc8d3 100644
--- a/config/packages/framework.yaml
+++ b/config/packages/framework.yaml
@@ -1,8 +1,7 @@
 # see https://symfony.com/doc/current/reference/configuration/framework.html
 framework:
     secret: '%env(APP_SECRET)%'
-    #csrf_protection: true
-    http_method_override: true # enable also in the index.php
+    http_method_override: true # enabled also in the index.php
 
     # Enables session support. Note that the session will ONLY be started if you read or write from it.
     # Remove or comment this section to explicitly disable session support.
diff --git a/symfony.lock b/symfony.lock
index 516e1c26..03c06d0d 100644
--- a/symfony.lock
+++ b/symfony.lock
@@ -225,12 +225,12 @@
         ]
     },
     "symfony/framework-bundle": {
-        "version": "7.1",
+        "version": "7.2",
         "recipe": {
             "repo": "github.com/symfony/recipes",
             "branch": "main",
-            "version": "7.0",
-            "ref": "6356c19b9ae08e7763e4ba2d9ae63043efc75db5"
+            "version": "7.2",
+            "ref": "87bcf6f7c55201f345d8895deda46d2adbdbaa89"
         },
         "files": [
             "config/packages/cache.yaml",