Security update for Core, with self-updated composer

[yaffs-website] / web / core / lib / Drupal / Core / Form / FormCache.php

diff --git a/web/core/lib/Drupal/Core/Form/FormCache.php b/web/core/lib/Drupal/Core/Form/FormCache.php
index 7064e10fb95dd551300e8185ca56232b9b4e5db5..9c931fdcae20723e37ab34034b6e19b8f27d1ada 100644 (file)
--- a/web/core/lib/Drupal/Core/Form/FormCache.php
+++ b/web/core/lib/Drupal/Core/Form/FormCache.php
@@ -8,6 +8,7 @@ use Drupal\Core\Extension\ModuleHandlerInterface;
 use Drupal\Core\KeyValueStore\KeyValueExpirableFactoryInterface;
 use Drupal\Core\PageCache\RequestPolicyInterface;
 use Drupal\Core\Session\AccountInterface;
+use Drupal\Core\Site\Settings;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\HttpFoundation\RequestStack;
 
@@ -170,8 +171,8 @@ class FormCache implements FormCacheInterface {
    * {@inheritdoc}
    */
   public function setCache($form_build_id, $form, FormStateInterface $form_state) {
-    // 6 hours cache life time for forms should be plenty.
-    $expire = 21600;
+    // Cache forms for 6 hours by default.
+    $expire = Settings::get('form_cache_expiration', 21600);
 
     // Ensure that the form build_id embedded in the form structure is the same
     // as the one passed in as a parameter. This is an additional safety measure