Minor tweaks

javiereguiluz · javiereguiluz · commit ee6841b81adf · 2025-06-27T08:21:51.000+02:00
diff --git a/security/passwords.rst b/security/passwords.rst
@@ -226,13 +226,42 @@ After configuring the correct algorithm, you can use the
             throw new \Exception('Bad credentials, cannot delete this user.');
         }
 
+Reset Password
+--------------
+
+Using `MakerBundle`_ and `SymfonyCastsResetPasswordBundle`_, you can create
+a secure out of the box solution to handle forgotten passwords. First,
+install the SymfonyCastsResetPasswordBundle:
+
+.. code-block:: terminal
+
+    $ composer require symfonycasts/reset-password-bundle
+
+Then, use the ``make:reset-password`` command. This asks you a few
+questions about your app and generates all the files you need! After,
+you'll see a success message and a list of any other steps you need to do.
+
+.. code-block:: terminal
+
+    $ php bin/console make:reset-password
+
+.. tip::
+
+    Starting in `MakerBundle`_: v1.57.0 - You can pass either ``--with-uuid`` or
+    ``--with-ulid`` to ``make:reset-password``. Leveraging Symfony's :doc:`Uid Component </components/uid>`,
+    the entities will be generated with the ``id`` type as :ref:`Uuid <uuid>`
+    or :ref:`Ulid <ulid>` instead of ``int``.
+
+You can customize the reset password bundle's behavior by updating the
+``reset_password.yaml`` file. For more information on the configuration,
+check out the `SymfonyCastsResetPasswordBundle`_  guide.
+
 Injecting a Specific Password Hasher
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-In some cases, you might define a password hasher in your configuration that is
-not linked to a user entity but is instead identified by a unique key.
-For example, you might have a separate hasher for things like password recovery
-codes.
+In some cases, you may define a password hasher in your configuration that is
+not tied to a user class. For example, you might use a separate hasher for
+password recovery codes or API tokens.
 
 With the following configuration:
 
@@ -247,12 +276,12 @@ With the following configuration:
             main:
                 # ...
 
-It is possible to inject the recovery_code password hasher into any service.
-To do this, you can't rely on standard autowiring, as Symfony wouldn't know
-which specific hasher to provide.
+You can inject the ``recovery_code`` password hasher into any service. However,
+you can't rely on standard autowiring, as Symfony doesn't know which specific
+hasher to provide.
 
-Instead, you can use the ``#[Target]`` attribute to request the hasher by its
-configuration key::
+Instead, use the ``#[Target]`` attribute to explicitly request the hasher by
+its configuration key::
 
     // src/Controller/HomepageController.php
     namespace App\Controller;
@@ -281,35 +310,9 @@ configuration key::
 When injecting a specific hasher by its name, you should type-hint the generic
 :class:`Symfony\\Component\\PasswordHasher\\PasswordHasherInterface`.
 
-Reset Password
---------------
-
-Using `MakerBundle`_ and `SymfonyCastsResetPasswordBundle`_, you can create
-a secure out of the box solution to handle forgotten passwords. First,
-install the SymfonyCastsResetPasswordBundle:
-
-.. code-block:: terminal
-
-    $ composer require symfonycasts/reset-password-bundle
-
-Then, use the ``make:reset-password`` command. This asks you a few
-questions about your app and generates all the files you need! After,
-you'll see a success message and a list of any other steps you need to do.
+.. versionadded:: 7.4
 
-.. code-block:: terminal
-
-    $ php bin/console make:reset-password
-
-.. tip::
-
-    Starting in `MakerBundle`_: v1.57.0 - You can pass either ``--with-uuid`` or
-    ``--with-ulid`` to ``make:reset-password``. Leveraging Symfony's :doc:`Uid Component </components/uid>`,
-    the entities will be generated with the ``id`` type as :ref:`Uuid <uuid>`
-    or :ref:`Ulid <ulid>` instead of ``int``.
-
-You can customize the reset password bundle's behavior by updating the
-``reset_password.yaml`` file. For more information on the configuration,
-check out the `SymfonyCastsResetPasswordBundle`_  guide.
+    The feature to inject specific password hashers was introduced in Symfony 7.4.
 
 .. _security-password-migration:
 
