Merge branch '2.8'

* 2.8:
  [Security][SecurityBundle] Use csrf_token_id instead of deprecated intention

Author: fabpot

src/Symfony/Bundle/SecurityBundle/CHANGELOG.md

@@ -11,6 +11,7 @@ CHANGELOG
 
  * deprecated the `key` setting of `anonymous`, `remember_me` and `http_digest`
    in favor of the `secret` setting.
+ * deprecated the `intention` firewall listener setting in favor of the `csrf_token_id`.
 
 2.6.0
 -----

src/Symfony/Component/Security/CHANGELOG.md

@@ -23,6 +23,8 @@ CHANGELOG
    `Symfony\Component\Security\Core\Authorization\Voter\VoterInterface`.
  * deprecated `getSupportedAttributes()` and `getSupportedClasses()` methods of
    `Symfony\Component\Security\Core\Authorization\Voter\AbstractVoter`, use `supports()` instead.
+ * deprecated the `intention` option for all the authentication listeners,
+   use the `csrf_token_id` option instead.
 
 2.7.0
 -----