malhuda/laravel
1
0
Fork 0
mirror of https://github.com/laravel/laravel.git synced 2025-02-20 11:53:14 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Don't flash 'current_password' input (#5541)

Browse Source 
* Don't flash `current_password` input

With starter packs like Jetstream, the `current_password` input is used.

I believe that adding `current_password` to the `$dontFlash` list by default would help to ensure new projects follow security best practices from the get-go.

* Update Handler.php

Co-authored-by: Taylor Otwell <taylor@laravel.com>
This commit is contained in:
Hugo Clarke-Wing 2021-02-19 16:09:51 +01:00 committed by GitHub
parent ebf2646c34
commit f0de9fd996
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
app/Exceptions/Handler.php
View File

@ -22,6 +22,7 @@ class Handler extends ExceptionHandler
* @var array
*/
protected $dontFlash = [
'current_password',
'password',
'password_confirmation',
];