1.0.7

• Added new option httpOnly (#11)

1.0.6

• Add TreeBuilder return type declaration and remove cannotBeEmpty for domain (#10)

1.0.5

• Added priority for CSRF Validation Subscriber so that it still intercepts Security actions. (#8)

1.0.4

• Support Symfony 6

1.0.3

• Fixes a check for allowed methods on creation of tokens (thanks @chrisguitarguy)

1.0.2

• Fixed cookie name not being derived from config

1.0.1

• Get CSRF token from request cookies alternatively

1.0.0

• Initial release