Winter\Storm\Auth\Managerto get the real user for the current request, taking into account user impersonation
canBeImpersonated($impersonator = false)to
Winter\Storm\Auth\Models\Userand models extending it (i.e.
Backend\Models\User); used to determine if the provided impersonator can impersonate the selected user.
model.user.beforeImpersonateto a halting event so that third party plugins are able to override the default return values from canBeImpersonated() to implement more or less strict impersonation protection policies as desired on a per project basis by returning a boolean flag indicating if the user can be impersonated or not
post()didn't return the default value when the request was not a POST request. This caused issues with forms relying on session keys (i.e. file upload fields etc.) as well as the form context property.
Sign up to our newsletter and receive updates on Winter releases, new features in the works, plugin and theme promotions and much more!