Update login handling to allow default redirection and adjust security settings

2026-02-27 13:53:53 +01:00 · 2026-02-27 13:53:53 +01:00 · 2d72515f0c
parent 25a477a8f9
commit 2d72515f0c
2 changed files with 6 additions and 1 deletions
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@ -58,7 +58,7 @@ security:
                check_path: app_login
                enable_csrf: true
                default_target_path: app_index
-                use_referer: true
+                always_use_default_target_path: false
            logout:
                path: app_logout
                enable_csrf: false
--- a/src/EventSubscriber/LoginSubscriber.php
+++ b/src/EventSubscriber/LoginSubscriber.php
@ -89,6 +89,11 @@ class LoginSubscriber implements EventSubscriberInterface
            $response->headers->clearCookie('logout_origin', '/');
            
            $event->setResponse($response);
+        } else {
+            // Pas de cookie logout_origin : laisser Symfony gérer la redirection par défaut
+            $this->logger->info('Normal login - using default target path', [
+                'user' => $user?->getUserIdentifier()
+            ]);
        }
    }
 }