Closed (fixed)
Project:
Drupal core
Version:
11.4.x-dev
Component:
routing system
Priority:
Normal
Category:
Task
Assigned:
Unassigned
Issue tags:
Reporter:
Created:
20 Apr 2026 at 22:26 UTC
Updated:
26 Jun 2026 at 19:10 UTC
Jump to comment: Most recent, Most recent file
Comments
Comment #2
sourav_paulWorking on this.
Comment #4
sourav_paulComment #5
smustgrave commentedAppears to have test failures
Comment #6
prudloff commentedTests where failing because UserAuthenticationController was still generating a CSRF token with the old key.
This makes me wonder if it should be deprecated first (contrib could also be generating CSRF tokens with this key).
Comment #7
smustgrave commentedyea deprecation sounds best. Almost wonder if at the time deprecations weren't as enforced since the todo is pointing to 8.4.
Comment #9
macsim commentedRebased the branch on
mainand added the deprecation.Though I am not certain we can deprecate it now and remove it in Drupal 12 since Drupal 12 is almost here - it might need to target Drupal 13 instead.
Comment #10
needs-review-queue-bot commentedThe Needs Review Queue Bot tested this issue. It fails the Drupal core commit checks. Therefore, this issue status is now "Needs work".
This does not mean that the patch necessarily needs to be re-rolled or the MR rebased. Read the Issue Summary, the issue tags and the latest discussion here to determine what needs to be done.
Consult the Drupal Contributor Guide to find step-by-step guides for working with issues.
Comment #11
macsim commentedComment #12
smustgrave commentedWould be deprecated in 11.4 and depends on how disruptive it would be if it can be removed in 12 or have to wait till 13 but would need to reflect in a CR
Thanks
Comment #13
macsim commentedCR is here: https://www.drupal.org/node/3591939
Comment #14
macsim commentedComment #15
smustgrave commentedSmall comments on the MR, leaving in review.
Comment #16
smustgrave commentedLooks like a good deprecation to me
Comment #17
needs-review-queue-bot commentedThe Needs Review Queue Bot tested this issue. It no longer applies to Drupal core. Therefore, this issue status is now "Needs work".
This does not mean that the patch necessarily needs to be re-rolled or the MR rebased. Read the Issue Summary, the issue tags and the latest discussion here to determine what needs to be done.
Consult the Drupal Contributor Guide to find step-by-step guides for working with issues.
Comment #18
macsim commentedComment #19
smustgrave commentedRebase seems fine
Comment #24
godotislateConsulted with @longwave, and it should be good for 11.4 backport.
Committed and pushed b91680f to main, and 2cb4b6f to 11.x, and 41b8957 to 11.4.x. Thanks!
I also reviewed and published the CR.