If you wanted to stop the program execution after a redirect you had to use the code shown below up to now:
$this->redirect('/controller/action', null, true); or $this->redirect('/controller/action'); exit();
Thanks to a recent change of the API of the “redirect” method — the default value for the $exit parameter was changed from “false” to “true” — you can now simply use:
As it does an exit() by default, you can no longer encounter a possible security hole I described in Don’t forget to exit after a redirect (well, theoretically you can still encounter it when setting the $exit parameter explicitly to “false”, but that’s rather unlikely I think).
Merry Christmas to everyone!
PS: From the activity in the repository it looks like the Cake team is baking a Christmas Cake :)