symfony/symfony-docsPublic

NotificationsYou must be signed in to change notification settings
Fork5.2k
Star2.3k

Commit113f19b

committed

Merge branch '3.4' into 4.0

* 3.4: Add all serialized class properties Use version name in installer command Update tags declaration in yaml format Use the new Security helper in some code examples

2 parents3c9bac5 +8915542 commit113f19bCopy full SHA for 113f19b

File tree

8 files changed

+60

-66

lines changed

components
- serializer.rst
controller
- argument_value_resolver.rst
form
- dynamic_form_modification.rst
security
- impersonating_user.rst
- securing_services.rst
security.rst
service_container
- tags.rst
session
- proxy_examples.rst

8 files changed

+60

-66

lines changed

`‎components/serializer.rst`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -132,7 +132,7 @@ use the Serializer service created before::`
`132`	`132`
`133`	`133`	`$jsonContent = $serializer->serialize($person, 'json');`
`134`	`134`
`135`		`- // $jsonContent contains {"name":"foo","age":99,"sportsperson":false}`
	`135`	`+ // $jsonContent contains {"name":"foo","age":99,"sportsperson":false,"createdAt":null}`
`136`	`136`
`137`	`137`	`echo $jsonContent; // or return it in a Response`
`138`	`138`

`‎controller/argument_value_resolver.rst`

Lines changed: 7 additions & 15 deletions

Original file line number	Diff line number	Diff line change
`@@ -91,16 +91,15 @@ retrieved from the token storage::`
`91`	`91`	`use Symfony\Component\HttpFoundation\Request;`
`92`	`92`	`use Symfony\Component\HttpKernel\Controller\ArgumentValueResolverInterface;`
`93`	`93`	`use Symfony\Component\HttpKernel\ControllerMetadata\ArgumentMetadata;`
`94`		`- use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;`
`95`		`- use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;`
	`94`	`+ use Symfony\Component\Security\Core\Security;`
`96`	`95`
`97`	`96`	`class UserValueResolver implements ArgumentValueResolverInterface`
`98`	`97`	`{`
`99`		`- private $tokenStorage;`
	`98`	`+ private $security;`
`100`	`99`
`101`		`- public function __construct(TokenStorageInterface $tokenStorage)`
	`100`	`+ public function __construct(Security $security)`
`102`	`101`	`{`
`103`		`- $this->tokenStorage = $tokenStorage;`
	`102`	`+ $this->security = $security;`
`104`	`103`	`}`
`105`	`104`
`106`	`105`	`public function supports(Request $request, ArgumentMetadata $argument)`
`@@ -109,27 +108,20 @@ retrieved from the token storage::`
`109`	`108`	`return false;`
`110`	`109`	`}`
`111`	`110`
`112`		`- $token = $this->tokenStorage->getToken();`
`113`		`-`
`114`		`- if (!$token instanceof TokenInterface) {`
`115`		`- return false;`
`116`		`- }`
`117`		`-`
`118`		`- return $token->getUser() instanceof User;`
	`111`	`+ return $this->security->getUser() instanceof User;`
`119`	`112`	`}`
`120`	`113`
`121`	`114`	`public function resolve(Request $request, ArgumentMetadata $argument)`
`122`	`115`	`{`
`123`		`- yield $this->tokenStorage->getToken()->getUser();`
	`116`	`+ yield $this->security->getUser();`
`124`	`117`	`}`
`125`	`118`	`}`
`126`	`119`
`127`	`120`	In order to get the actual ``User`` object in your argument, the given value
`128`	`121`	`must fulfill the following requirements:`
`129`	`122`
`130`	`123`	* An argument must be type-hinted as ``User`` in your action method signature;
`131`		`-* A security token must be present;`
`132`		-* The value must be an instance of the ``User``.
	`124`	+* The value must be an instance of the ``User`` class.
`133`	`125`
`134`	`126`	When all those requirements are met and ``true`` is returned, the
`135`	`127`	``ArgumentResolver`` calls ``resolve()`` with the same values as it called

`‎form/dynamic_form_modification.rst`

Lines changed: 3 additions & 1 deletion

Original file line number	Diff line number	Diff line change
@@ -234,6 +234,7 @@ contains only this user's friends. This can be done injecting the ``Security``
`234`	`234`	`service into the form type so you can get the current user object::`
`235`	`235`
`236`	`236`	`use Symfony\Component\Security\Core\Security;`
	`237`	`+ // ...`
`237`	`238`
`238`	`239`	`private $security;`
`239`	`240`
`@@ -254,7 +255,8 @@ service into the form type so you can get the current user object::`
`254`	`255`	`Customizing the Form Type`
`255`	`256`	`~~~~~~~~~~~~~~~~~~~~~~~~~`
`256`	`257`
`257`		`-Now that you have all the basics in place you can complete the listener logic::`
	`258`	`+Now that you have all the basics in place you can use the features of the`
	`259`	`+security helper to fill in the listener logic::`
`258`	`260`
`259`	`261`	`// src/Form/Type/FriendMessageFormType.php`
`260`	`262`

`‎security.rst`

Lines changed: 7 additions & 5 deletions

Original file line number	Diff line number	Diff line change
@@ -1069,16 +1069,18 @@ the User object, and use the ``isGranted()`` method (or
`1069`	`1069`
`1070`	`1070`	`An alternative way to get the current user in a controller is to type-hint`
`1071`	`1071`	`the controller argument with`
`1072`		-:class:`Symfony\\Component\\Security\\Core\\User\\UserInterface`
`1073`		- (and default it to ``null`` if being logged-in is optional)::
	`1072`	+:class:`Symfony\\Component\\Security\\Core\\Security`::
`1074`	`1073`
`1075`		`- use Symfony\Component\Security\Core\User\UserInterface;`
	`1074`	`+ use Symfony\Component\Security\Core\Security;`
`1076`	`1075`
`1077`		`- public functionindex(UserInterface $user = null)`
	`1076`	`+ public functionindexAction(Security $security)`
`1078`	`1077`	`{`
`1079`		`-//$useris null when not logged-in or anon.`
	`1078`	`+ $user= $security->getUser();`
`1080`	`1079`	`}`
`1081`	`1080`
	`1081`	`+ ..versionadded::3.4`
	`1082`	+ The ``Security`` utility class was introduced in Symfony 3.4.
	`1083`	`+`
`1082`	`1084`	`This is only recommended for experienced developers who don't extend from the`
`1083`	`1085`	:ref:`Symfony base controller<the-base-controller-class-services>` and
`1084`	`1086`	don't use the:class:`Symfony\\Bundle\\FrameworkBundle\\Controller\\ControllerTrait`

`‎security/impersonating_user.rst`

Lines changed: 18 additions & 15 deletions

Original file line number	Diff line number	Diff line change
@@ -108,25 +108,28 @@ over the user's roles until you find one that a ``SwitchUserRole`` object::
`108`	`108`	`use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;`
`109`	`109`	`use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;`
`110`	`110`	`use Symfony\Component\Security\Core\Role\SwitchUserRole;`
	`111`	`+ use Symfony\Component\Security\Core\Security;`
	`112`	`+ // ...`
`111`	`113`
`112`		`- private $authorizationChecker;`
`113`		`- private $tokenStorage;`
`114`		`-`
`115`		`- public function __construct(AuthorizationCheckerInterface $authorizationChecker, TokenStorageInterface $tokenStorage)`
	`114`	`+ public class SomeService`
`116`	`115`	`{`
`117`		`- $this->authorizationChecker = $authorizationChecker;`
`118`		`- $this->tokenStorage = $tokenStorage;`
`119`		`- }`
	`116`	`+ private $security;`
`120`	`117`
`121`		`- public function someMethod()`
`122`		`- {`
`123`		`- // ...`
	`118`	`+ public function __construct(Security $security)`
	`119`	`+ {`
	`120`	`+ $this->security = $security;`
	`121`	`+ }`
	`122`	`+`
	`123`	`+ public function someMethod()`
	`124`	`+ {`
	`125`	`+ // ...`
`124`	`126`
`125`		`- if ($authorizationChecker->isGranted('ROLE_PREVIOUS_ADMIN')) {`
`126`		`- foreach ($tokenStorage->getToken()->getRoles() as $role) {`
`127`		`- if ($role instanceof SwitchUserRole) {`
`128`		`- $impersonatorUser = $role->getSource()->getUser();`
`129`		`- break;`
	`127`	`+ if ($this->security->isGranted('ROLE_PREVIOUS_ADMIN')) {`
	`128`	`+ foreach ($this->security->getToken()->getRoles() as $role) {`
	`129`	`+ if ($role instanceof SwitchUserRole) {`
	`130`	`+ $impersonatorUser = $role->getSource()->getUser();`
	`131`	`+ break;`
	`132`	`+ }`
`130`	`133`	`}`
`131`	`134`	`}`
`132`	`135`	`}`

`‎security/securing_services.rst`

Lines changed: 9 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -44,28 +44,27 @@ Before you add security, the class looks something like this::`
`44`	`44`	`}`
`45`	`45`
`46`	`46`	Your goal is to check the user's role when the ``sendNewsletter()`` method is
`47`		`-called. The first step towards this is to inject the`
`48`		-``Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface``
`49`		`-service into the object::`
	`47`	+called. The first step towards this is to inject the ``security.helper`` service
	`48`	+using the:class:`Symfony\\Component\\Security\\Core\\Security` class::
`50`	`49`
`51`	`50`	`// src/Newsletter/NewsletterManager.php`
`52`	`51`
`53`	`52`	`// ...`
`54`		`- use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;`
`55`	`53`	`use Symfony\Component\Security\Core\Exception\AccessDeniedException;`
	`54`	`+ use Symfony\Component\Security\Core\Security;`
`56`	`55`
`57`	`56`	`class NewsletterManager`
`58`	`57`	`{`
`59`		`- protected $authChecker;`
	`58`	`+ protected $security;`
`60`	`59`
`61`		`- public function __construct(AuthorizationCheckerInterface $authChecker)`
	`60`	`+ public function __construct(Security $security)`
`62`	`61`	`{`
`63`		`- $this->authChecker = $authChecker;`
	`62`	`+ $this->security = $security;`
`64`	`63`	`}`
`65`	`64`
`66`	`65`	`public function sendNewsletter()`
`67`	`66`	`{`
`68`		`- if (!$this->authChecker->isGranted('ROLE_NEWSLETTER_ADMIN')) {`
	`67`	`+ if (!$this->security->isGranted('ROLE_NEWSLETTER_ADMIN')) {`
`69`	`68`	`throw new AccessDeniedException();`
`70`	`69`	`}`
`71`	`70`
`@@ -76,8 +75,8 @@ service into the object::`
`76`	`75`	`}`
`77`	`76`
`78`	`77`	If you're using the:ref:`default services.yaml configuration<service-container-services-load-example>`,
`79`		`-Symfony will automatically pass theauthorization checker to your service`
`80`		-thanks to autowiring and the ``AuthorizationCheckerInterface`` type-hint.
	`78`	+Symfony will automatically pass the``security.helper`` to your service
	`79`	+thanks to autowiring and the ``Security`` type-hint.
`81`	`80`
`82`	`81`	If the current user does not have the ``ROLE_NEWSLETTER_ADMIN``, they will
`83`	`82`	`be prompted to log in.`

`‎service_container/tags.rst`

Lines changed: 10 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@ example:`
`17`	`17`	`services:`
`18`	`18`	`App\Twig\AppExtension:`
`19`	`19`	`public:false`
`20`		`-tags:[twig.extension]`
	`20`	`+tags:['twig.extension']`
`21`	`21`
`22`	`22`	`..code-block::xml`
`23`	`23`
`@@ -162,10 +162,10 @@ For example, you may add the following transports as services:`
`162`	`162`	`services:`
`163`	`163`	`Swift_SmtpTransport:`
`164`	`164`	`arguments:['%mailer_host%']`
`165`		`-tags:[app.mail_transport]`
	`165`	`+tags:['app.mail_transport']`
`166`	`166`
`167`	`167`	`Swift_SendmailTransport:`
`168`		`-tags:[app.mail_transport]`
	`168`	`+tags:['app.mail_transport']`
`169`	`169`
`170`	`170`	`..code-block::xml`
`171`	`171`
`@@ -317,11 +317,11 @@ To answer this, change the service declaration:`
`317`	`317`	`Swift_SmtpTransport:`
`318`	`318`	`arguments:['%mailer_host%']`
`319`	`319`	`tags:`
`320`		`- -{ name: app.mail_transport, alias: smtp }`
	`320`	`+ -{ name:'app.mail_transport', alias:'smtp' }`
`321`	`321`
`322`	`322`	`Swift_SendmailTransport:`
`323`	`323`	`tags:`
`324`		`- -{ name: app.mail_transport, alias: sendmail }`
	`324`	`+ -{ name:'app.mail_transport', alias:'sendmail' }`
`325`	`325`
`326`	`326`	`..code-block::xml`
`327`	`327`
`@@ -368,13 +368,13 @@ To answer this, change the service declaration:`
`368`	`368`	`# Compact syntax`
`369`	`369`	`Swift_SendmailTransport:`
`370`	`370`	`class:\Swift_SendmailTransport`
`371`		`-tags:[app.mail_transport]`
	`371`	`+tags:['app.mail_transport']`
`372`	`372`
`373`	`373`	`# Verbose syntax`
`374`	`374`	`Swift_SendmailTransport:`
`375`	`375`	`class:\Swift_SendmailTransport`
`376`	`376`	`tags:`
`377`		`- -{ name: app.mail_transport }`
	`377`	`+ -{ name:'app.mail_transport' }`
`378`	`378`
`379`	`379`	Notice that you've added a generic ``alias`` key to the tag. To actually
`380`	`380`	`use this, update the compiler::`
@@ -424,10 +424,10 @@ first constructor argument to the ``App\HandlerCollection`` service:
`424`	`424`	`# config/services.yaml`
`425`	`425`	`services:`
`426`	`426`	`App\Handler\One:`
`427`		`-tags:[app.handler]`
	`427`	`+tags:['app.handler']`
`428`	`428`
`429`	`429`	`App\Handler\Two:`
`430`		`-tags:[app.handler]`
	`430`	`+tags:['app.handler']`
`431`	`431`
`432`	`432`	`App\HandlerCollection:`
`433`	`433`	`# inject all services tagged with app.handler as first argument`
`@@ -500,7 +500,7 @@ application handlers.`
`500`	`500`	`services:`
`501`	`501`	`App\Handler\One:`
`502`	`502`	`tags:`
`503`		`- -{ name: app.handler, priority: 20 }`
	`503`	`+ -{ name:'app.handler', priority: 20 }`
`504`	`504`
`505`	`505`	`..code-block::xml`
`506`	`506`

`‎session/proxy_examples.rst`

Lines changed: 5 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -110,15 +110,15 @@ can intercept the session before it is written::`
`110`	`110`
`111`	`111`	`use App\Entity\User;`
`112`	`112`	`use Symfony\Component\HttpFoundation\Session\Storage\Proxy\SessionHandlerProxy;`
`113`		`- use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;`
	`113`	`+ use Symfony\Component\Security\Core\Security;`
`114`	`114`
`115`	`115`	`class ReadOnlySessionProxy extends SessionHandlerProxy`
`116`	`116`	`{`
`117`		`- private $tokenStorage;`
	`117`	`+ private $security;`
`118`	`118`
`119`		`- public function __construct(\SessionHandlerInterface $handler,TokenStorageInterface $tokenStorage)`
	`119`	`+ public function __construct(\SessionHandlerInterface $handler,Security $security)`
`120`	`120`	`{`
`121`		`- $this->tokenStorage = $tokenStorage;`
	`121`	`+ $this->security = $security;`
`122`	`122`
`123`	`123`	`parent::__construct($handler);`
`124`	`124`	`}`
`@@ -134,11 +134,7 @@ can intercept the session before it is written::`
`134`	`134`
`135`	`135`	`private function getUser()`
`136`	`136`	`{`
`137`		`- if (!$token = $this->tokenStorage->getToken()) {`
`138`		`- return;`
`139`		`- }`
`140`		`-`
`141`		`- $user = $token->getUser();`
	`137`	`+ $user = $this->security->getUser();`
`142`	`138`	`if (is_object($user)) {`
`143`	`139`	`return $user;`
`144`	`140`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit113f19b

File tree

8 files changed

8 files changed

`‎components/serializer.rst`

`‎controller/argument_value_resolver.rst`

`‎form/dynamic_form_modification.rst`

`‎security.rst`

`‎security/impersonating_user.rst`

`‎security/securing_services.rst`

`‎service_container/tags.rst`

`‎session/proxy_examples.rst`

0 commit comments