Change incorrect check for the stateless request attribute

themasch · web-flow · commit 92093b95c283 · 2024-07-08T15:20:15.000+02:00
We only want to use the session if the request is **not** `stateless`. The old code used the sesison only in `stateless` requests (so requests not intended to use the session (=state) at all).
diff --git a/src/Symfony/Bundle/WebProfilerBundle/Controller/ProfilerController.php b/src/Symfony/Bundle/WebProfilerBundle/Controller/ProfilerController.php
@@ -180,7 +180,7 @@ public function searchBarAction(Request $request): Response
         $this->cspHandler?->disableCsp();
 
         $session = null;
-        if ($request->attributes->getBoolean('_stateless') && $request->hasSession()) {
+        if (!$request->attributes->getBoolean('_stateless') && $request->hasSession()) {
             $session = $request->getSession();
         }
 

Original file line number	Diff line number	Diff line change
`@@ -180,7 +180,7 @@ public function searchBarAction(Request $request): Response`
`180`	`180`	`$this->cspHandler?->disableCsp();`
`181`	`181`
`182`	`182`	`$session = null;`
`183`		`- if ($request->attributes->getBoolean('_stateless') && $request->hasSession()) {`
	`183`	`+ if (!$request->attributes->getBoolean('_stateless') && $request->hasSession()) {`
`184`	`184`	`$session = $request->getSession();`
`185`	`185`	`}`
`186`	`186`