NotificationsYou must be signed in to change notification settings
Fork9.7k
Star30.8k

Commit9c44ad6

committed

[SecurityBundle] Create a smooth upgrade path for security factories

1 parentb1e2527 commit9c44ad6Copy full SHA for 9c44ad6

File tree

20 files changed

+299

-93

lines changed

UPGRADE-5.4.md
UPGRADE-6.0.md
src/Symfony/Bundle/SecurityBundle
- CHANGELOG.md
- DependencyInjection
- SecurityBundle.php
- Tests/DependencyInjection
  - MainConfigurationTest.php

20 files changed

+299

-93

lines changed

`‎UPGRADE-5.4.md‎`

Lines changed: 20 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,3 +11,23 @@ HttpKernel`
`11`	`11`	`----------`
`12`	`12`
`13`	`13`	* Deprecate`AbstractTestSessionListener::getSession` inject a session in the request instead
	`14`	`+`
	`15`	`+SecurityBundle`
	`16`	`+--------------`
	`17`	`+`
	`18`	+* Deprecate`SecurityFactoryInterface` and`SecurityExtension::addSecurityListenerFactory()` in favor of
	`19`	+`AuthenticatorFactoryInterface` and`SecurityExtension::addAuthenticatorFactory()`
	`20`	`+`
	`21`	+* Add`AuthenticatorFactoryInterface::getPriority()` which replaces`SecurityFactoryInterface::getPosition()`.
	`22`	`+ Previous positions are mapped to the following priorities:`
	`23`	`+`
	`24`	`+\| Position\| Constant\| Priority\|`
	`25`	`+\| -----------\| -----------------------------------------------------\| --------\|`
	`26`	+\| pre_auth\|`RemoteUserFactory::PRIORITY`/`X509Factory::PRIORITY`\| -10\|
	`27`	+\| form\|`FormLoginFactory::PRIORITY`\| -30\|
	`28`	+\| http\|`HttpBasicFactory::PRIORITY`\| -50\|
	`29`	+\| remember_me\|`RememberMeFactory::PRIORITY`\| -60\|
	`30`	`+\| anonymous\| n/a\| -70\|`
	`31`	`+`
	`32`	+* Deprecate passing an array of arrays as 1st argument to`MainConfiguration`, pass a sorted flat array of
	`33`	`+ factories instead.`

`‎UPGRADE-6.0.md‎`

Lines changed: 15 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -313,6 +313,21 @@ Security`
`313`	`313`	`SecurityBundle`
`314`	`314`	`--------------`
`315`	`315`
	`316`	+* Remove`SecurityFactoryInterface` and`SecurityExtension::addSecurityListenerFactory()` in favor of
	`317`	+`AuthenticatorFactoryInterface` and`SecurityExtension::addAuthenticatorFactory()`
	`318`	+* Add`AuthenticatorFactoryInterface::getPriority()` which replaces`SecurityFactoryInterface::getPosition()`.
	`319`	`+ Previous positions are mapped to the following priorities:`
	`320`	`+`
	`321`	`+\| Position\| Constant\| Priority\|`
	`322`	`+\| -----------\| -----------------------------------------------------\| --------\|`
	`323`	+\| pre_auth\|`RemoteUserFactory::PRIORITY`/`X509Factory::PRIORITY`\| -10\|
	`324`	+\| form\|`FormLoginFactory::PRIORITY`\| -30\|
	`325`	+\| http\|`HttpBasicFactory::PRIORITY`\| -50\|
	`326`	+\| remember_me\|`RememberMeFactory::PRIORITY`\| -60\|
	`327`	`+\| anonymous\| n/a\| -70\|`
	`328`	`+`
	`329`	+* Remove passing an array of arrays as 1st argument to`MainConfiguration`, pass a sorted flat array of
	`330`	`+ factories instead.`
`316`	`331`	* Remove the`UserPasswordEncoderCommand` class and the corresponding`user:encode-password` command,
`317`	`332`	use`UserPasswordHashCommand` and`user:hash-password` instead
`318`	`333`	* Remove the`security.encoder_factory.generic` service, the`security.encoder_factory` and`Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface` aliases,

`‎src/Symfony/Bundle/SecurityBundle/CHANGELOG.md‎`

Lines changed: 9 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,15 @@`
`1`	`1`	`CHANGELOG`
`2`	`2`	`=========`
`3`	`3`
	`4`	`+5.4`
	`5`	`+---`
	`6`	`+`
	`7`	+* Deprecate`SecurityFactoryInterface` and`SecurityExtension::addSecurityListenerFactory()` in favor of
	`8`	+`AuthenticatorFactoryInterface` and`SecurityExtension::addAuthenticatorFactory()`
	`9`	+* Add`AuthenticatorFactoryInterface::getPriority()` which replaces`SecurityFactoryInterface::getPosition()`
	`10`	+* Deprecate passing an array of arrays as 1st argument to`MainConfiguration`, pass a sorted flat array of
	`11`	`+ factories instead.`
	`12`	`+`
`4`	`13`	`5.3`
`5`	`14`	`---`
`6`	`15`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php‎`

Lines changed: 21 additions & 12 deletions

Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,8 @@`
`12`	`12`	`namespaceSymfony\Bundle\SecurityBundle\DependencyInjection;`
`13`	`13`
`14`	`14`	`useSymfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\AbstractFactory;`
	`15`	`+useSymfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\AuthenticatorFactoryInterface;`
	`16`	`+useSymfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\SecurityFactoryInterface;`
`15`	`17`	`useSymfony\Component\Config\Definition\Builder\ArrayNodeDefinition;`
`16`	`18`	`useSymfony\Component\Config\Definition\Builder\TreeBuilder;`
`17`	`19`	`useSymfony\Component\Config\Definition\ConfigurationInterface;`
`@@ -31,8 +33,17 @@ class MainConfiguration implements ConfigurationInterface`
`31`	`33`	`private$factories;`
`32`	`34`	`private$userProviderFactories;`
`33`	`35`
	`36`	`+/**`
	`37`	`+ * @param (SecurityFactoryInterface\|AuthenticatorFactoryInterface)[] $factories`
	`38`	`+ */`
`34`	`39`	`publicfunction__construct(array$factories,array$userProviderFactories)`
`35`	`40`	`{`
	`41`	`+if (\is_array(current($factories))) {`
	`42`	`+trigger_deprecation('symfony/security-bundle','5.4','Passing an array of arrays as 1st argument to "%s" is deprecated, pass a sorted array of factories instead.',__METHOD__);`
	`43`	`+`
	`44`	`+$factories =array_merge(...array_values($factories));`
	`45`	`+ }`
	`46`	`+`
`36`	`47`	`$this->factories =$factories;`
`37`	`48`	`$this->userProviderFactories =$userProviderFactories;`
`38`	`49`	`}`
`@@ -294,19 +305,17 @@ private function addFirewallsSection(ArrayNodeDefinition $rootNode, array $facto`
`294`	`305`	`;`
`295`	`306`
`296`	`307`	`$abstractFactoryKeys = [];`
`297`		`-foreach ($factoriesas$factoriesAtPosition) {`
`298`		`-foreach ($factoriesAtPositionas$factory) {`
`299`		`-$name =str_replace('-','_',$factory->getKey());`
`300`		`-$factoryNode =$firewallNodeBuilder->arrayNode($name)`
`301`		`- ->canBeUnset()`
`302`		`- ;`
`303`		`-`
`304`		`-if ($factoryinstanceof AbstractFactory) {`
`305`		`-$abstractFactoryKeys[] =$name;`
`306`		`- }`
`307`		`-`
`308`		`-$factory->addConfiguration($factoryNode);`
	`308`	`+foreach ($factoriesas$factory) {`
	`309`	`+$name =str_replace('-','_',$factory->getKey());`
	`310`	`+$factoryNode =$firewallNodeBuilder->arrayNode($name)`
	`311`	`+ ->canBeUnset()`
	`312`	`+ ;`
	`313`	`+`
	`314`	`+if ($factoryinstanceof AbstractFactory) {`
	`315`	`+$abstractFactoryKeys[] =$name;`
`309`	`316`	`}`
	`317`	`+`
	`318`	`+$factory->addConfiguration($factoryNode);`
`310`	`319`	`}`
`311`	`320`
`312`	`321`	`// check for unreachable check paths`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AnonymousFactory.php‎`

Lines changed: 5 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -52,6 +52,11 @@ public function createAuthenticator(ContainerBuilder $container, string $firewal`
`52`	`52`	`thrownewInvalidConfigurationException(sprintf('The authenticator manager no longer has "anonymous" security. Please remove this option under the "%s" firewall'.($config['lazy'] ?' and add "lazy: true"' :'').'.',$firewallName));`
`53`	`53`	`}`
`54`	`54`
	`55`	`+publicfunctiongetPriority()`
	`56`	`+ {`
	`57`	`+return -60;`
	`58`	`+ }`
	`59`	`+`
`55`	`60`	`publicfunctiongetPosition()`
`56`	`61`	`{`
`57`	`62`	`return'anonymous';`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AuthenticatorFactoryInterface.php‎`

Lines changed: 13 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,9 +11,12 @@`
`11`	`11`
`12`	`12`	`namespaceSymfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory;`
`13`	`13`
	`14`	`+useSymfony\Component\Config\Definition\Builder\NodeDefinition;`
`14`	`15`	`useSymfony\Component\DependencyInjection\ContainerBuilder;`
`15`	`16`
`16`	`17`	`/**`
	`18`	`+ * @method int getPriority() defines the position at which the authenticator is called`
	`19`	`+ *`
`17`	`20`	`* @author Wouter de Jong <wouter@wouterj.nl>`
`18`	`21`	`*/`
`19`	`22`	`interface AuthenticatorFactoryInterface`
`@@ -24,4 +27,14 @@ interface AuthenticatorFactoryInterface`
`24`	`27`	`* @return string\|string[] The authenticator service ID(s) to be used by the firewall`
`25`	`28`	`*/`
`26`	`29`	`publicfunctioncreateAuthenticator(ContainerBuilder$container,string$firewallName,array$config,string$userProviderId);`
	`30`	`+`
	`31`	`+/**`
	`32`	`+ * Defines the configuration key used to reference the authenticator`
	`33`	`+ * in the firewall configuration.`
	`34`	`+ *`
	`35`	`+ * @return string`
	`36`	`+ */`
	`37`	`+publicfunctiongetKey();`
	`38`	`+`
	`39`	`+publicfunctionaddConfiguration(NodeDefinition$builder);`
`27`	`40`	`}`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/CustomAuthenticatorFactory.php‎`

Lines changed: 5 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,11 @@ public function create(ContainerBuilder $container, string $id, array $config, s`
`27`	`27`	`thrownew \LogicException('Custom authenticators are not supported when "security.enable_authenticator_manager" is not set to true.');`
`28`	`28`	`}`
`29`	`29`
	`30`	`+publicfunctiongetPriority():int`
	`31`	`+ {`
	`32`	`+return0;`
	`33`	`+ }`
	`34`	`+`
`30`	`35`	`publicfunctiongetPosition():string`
`31`	`36`	`{`
`32`	`37`	`return'pre_auth';`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/FormLoginFactory.php‎`

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,8 @@`
`27`	`27`	`*/`
`28`	`28`	`class FormLoginFactoryextends AbstractFactoryimplements AuthenticatorFactoryInterface`
`29`	`29`	`{`
	`30`	`+publicconstPRIORITY = -30;`
	`31`	`+`
`30`	`32`	`publicfunction__construct()`
`31`	`33`	`{`
`32`	`34`	`$this->addOption('username_parameter','_username');`
`@@ -37,6 +39,11 @@ public function __construct()`
`37`	`39`	`$this->addOption('post_only',true);`
`38`	`40`	`}`
`39`	`41`
	`42`	`+publicfunctiongetPriority():int`
	`43`	`+ {`
	`44`	`+returnself::PRIORITY;`
	`45`	`+ }`
	`46`	`+`
`40`	`47`	`publicfunctiongetPosition()`
`41`	`48`	`{`
`42`	`49`	`return'form';`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/GuardAuthenticationFactory.php‎`

Lines changed: 5 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,11 @@ public function getPosition()`
`34`	`34`	`return'pre_auth';`
`35`	`35`	`}`
`36`	`36`
	`37`	`+publicfunctiongetPriority():int`
	`38`	`+ {`
	`39`	`+return0;`
	`40`	`+ }`
	`41`	`+`
`37`	`42`	`publicfunctiongetKey()`
`38`	`43`	`{`
`39`	`44`	`return'guard';`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/HttpBasicFactory.php‎`

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,8 @@`
`25`	`25`	`*/`
`26`	`26`	`class HttpBasicFactoryimplements SecurityFactoryInterface, AuthenticatorFactoryInterface`
`27`	`27`	`{`
	`28`	`+publicconstPRIORITY = -50;`
	`29`	`+`
`28`	`30`	`publicfunctioncreate(ContainerBuilder$container,string$id,array$config,string$userProvider, ?string$defaultEntryPoint)`
`29`	`31`	`{`
`30`	`32`	`$provider ='security.authentication.provider.dao.'.$id;`
`@@ -66,6 +68,11 @@ public function createAuthenticator(ContainerBuilder $container, string $firewal`
`66`	`68`	`return$authenticatorId;`
`67`	`69`	`}`
`68`	`70`
	`71`	`+publicfunctiongetPriority():int`
	`72`	`+ {`
	`73`	`+returnself::PRIORITY;`
	`74`	`+ }`
	`75`	`+`
`69`	`76`	`publicfunctiongetPosition()`
`70`	`77`	`{`
`71`	`78`	`return'http';`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit9c44ad6

File tree

20 files changed

20 files changed

`‎UPGRADE-5.4.md‎`

`‎UPGRADE-6.0.md‎`

`‎src/Symfony/Bundle/SecurityBundle/CHANGELOG.md‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AnonymousFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AuthenticatorFactoryInterface.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/CustomAuthenticatorFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/FormLoginFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/GuardAuthenticationFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/HttpBasicFactory.php‎`

0 commit comments