Commit38a9ee1

committed

Use instanceof NullToken in voters

To test if the user is not logged.

1 parent37b1226 commit38a9ee1Copy full SHA for 38a9ee1

File tree

2 files changed

+12

-4

lines changed

reference/forms/types
- datetime.rst
security.rst

2 files changed

+12

-4

lines changed

`‎reference/forms/types/datetime.rst‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
@@ -13,7 +13,7 @@ the data can be a ``DateTime`` object, a string, a timestamp or an array.
`13`	`13`	`+---------------------------+-----------------------------------------------------------------------------+`
`14`	`14`	\| Underlying Data Type\| can be ``DateTime``, string, timestamp, or array (see the ``input`` option)\|
`15`	`15`	`+---------------------------+-----------------------------------------------------------------------------+`
`16`		`-\| Rendered as\| single text box or five select fields\|`
	`16`	`+\| Rendered as\| single text box or five select fields\|`
`17`	`17`	`+---------------------------+-----------------------------------------------------------------------------+`
`18`	`18`	`\| Default invalid message\| Please enter a valid date and time.\|`
`19`	`19`	`+---------------------------+-----------------------------------------------------------------------------+`

`‎security.rst‎`

Lines changed: 11 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -2346,14 +2346,15 @@ Granting Anonymous Users Access in a Custom Voter`
`2346`	`2346`	`~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~`
`2347`	`2347`
`2348`	`2348`	If you're using a:doc:`custom voter</security/voters>`, you can allow
`2349`		`-anonymous users access by checking if there is no user set on the token::`
	`2349`	`+anonymous users access by checking if the token is an instance of`
	`2350`	+:class:`Symfony\\Component\\Security\\Core\\Authentication\\Token\\NullToken`::
`2350`	`2351`
`2351`	`2352`	`// src/Security/PostVoter.php`
`2352`	`2353`	`namespace App\Security;`
`2353`	`2354`
`2354`	`2355`	`// ...`
	`2356`	`+ use Symfony\Component\Security\Core\Authentication\Token\NullToken;`
`2355`	`2357`	`use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;`
`2356`		`- use Symfony\Component\Security\Core\Authentication\User\UserInterface;`
`2357`	`2358`	`use Symfony\Component\Security\Core\Authorization\Voter\Voter;`
`2358`	`2359`
`2359`	`2360`	`class PostVoter extends Voter`
`@@ -2364,14 +2365,21 @@ anonymous users access by checking if there is no user set on the token::`
`2364`	`2365`	`{`
`2365`	`2366`	`// ...`
`2366`	`2367`
`2367`		`- if (!$token->getUser() instanceofUserInterface) {`
	`2368`	`+ if ($token instanceofNullToken) {`
`2368`	`2369`	`// the user is not authenticated, e.g. only allow them to`
`2369`	`2370`	`// see public posts`
`2370`	`2371`	`return $subject->isPublic();`
`2371`	`2372`	`}`
`2372`	`2373`	`}`
`2373`	`2374`	`}`
`2374`	`2375`
	`2376`	`+..caution::`
	`2377`	`+`
	`2378`	+:class:`Symfony\\Component\\Security\\Core\\Authentication\\Token\\NullToken` is only available in voters
	`2379`	+ (because:method:`Symfony\\Component\\Security\\Core\\Authorization\\Voter\\VoterInterface::vote` can't receive a null token). Outside of voters (controllers, other services...) there is no token in the
	`2380`	+:class:`Symfony\\Component\\Security\\Core\\Authentication\\Token\\Storage\\TokenStorageInterface`
	`2381`	`+ implementation when the user is not logged.`
	`2382`	`+`
`2375`	`2383`	`Setting Individual User Permissions`
`2376`	`2384`	`~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~`
`2377`	`2385`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit38a9ee1

File tree

2 files changed

2 files changed

`‎reference/forms/types/datetime.rst‎`

`‎security.rst‎`

0 commit comments