Details
-
Story
-
Resolution: Fixed
-
Critical
-
5.1-dev
Description
Currently we have in parameters.yml:
parameters: secret: ThisTokenIsNotSoSecretChangeIt
This is not secure at all and should be changed at install/update time.
Can be done at the step where legacy settings are dumped into YAML and with a composer install/update command like it's done in Symfony standard.