Commitd495527

committed

Merge branch '5.2' into 5.x

* 5.2: Update setup page for Symfony 5.1 - add version Update setup page for Symfony 5.2 - drop dev [#14671] Added example of inline host defaults/requirements [#14672] Updated more docs related to the UserBadge Update experimental_authenticators : add UserBadge Document routing inline requirements and defaults for host

2 parents3dcc586 +4da30ed commitd495527Copy full SHA for d495527

File tree

3 files changed

+81

-33

lines changed

routing.rst
security
- experimental_authenticators.rst
setup.rst

3 files changed

+81

-33

lines changed

`‎routing.rst‎`

Lines changed: 10 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -2036,6 +2036,16 @@ these routes.`
`2036`	`2036`	`// ['HTTP_HOST' => 'm.' . $client->getContainer()->getParameter('domain')]`
`2037`	`2037`	`);`
`2038`	`2038`
	`2039`	`+..tip::`
	`2040`	`+`
	`2041`	`+ You can also use the inline defaults and requirements format in the`
	`2042`	+ ``host`` option: ``{subdomain<m\|mobile>?m}.example.com``
	`2043`	`+`
	`2044`	`+..versionadded::5.2`
	`2045`	`+`
	`2046`	`+ Inline parameter default values support in hosts were introduced in`
	`2047`	`+ Symfony 5.2. Prior to Symfony 5.2, they were supported in the path only.`
	`2048`	`+`
`2039`	`2049`	`.. _i18n-routing:`
`2040`	`2050`
`2041`	`2051`	`Localized Routes (i18n)`

`‎security/experimental_authenticators.rst‎`

Lines changed: 67 additions & 29 deletions

Original file line number	Diff line number	Diff line change
`@@ -295,8 +295,8 @@ method that fits most use-cases::`
`295`	`295`	`use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;`
`296`	`296`	`use Symfony\Component\Security\Core\Exception\AuthenticationException;`
`297`	`297`	`use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;`
`298`		`- use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;`
`299`	`298`	`use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;`
	`299`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
`300`	`300`	`use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;`
`301`	`301`	`use Symfony\Component\Security\Http\Authenticator\Passport\SelfValidatingPassport;`
`302`	`302`
`@@ -328,14 +328,7 @@ method that fits most use-cases::`
`328`	`328`	`throw new CustomUserMessageAuthenticationException('No API token provided');`
`329`	`329`	`}`
`330`	`330`
`331`		`- $user = $this->entityManager->getRepository(User::class)`
`332`		`- ->findOneBy(['apiToken' => $apiToken])`
`333`		`- ;`
`334`		`- if (null === $user) {`
`335`		`- throw new UsernameNotFoundException();`
`336`		`- }`
`337`		`-`
`338`		`- return new SelfValidatingPassport($user);`
	`331`	`+ return new SelfValidatingPassport(new UserBadge($apiToken));`
`339`	`332`	`}`
`340`	`333`
`341`	`334`	`public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response`
`@@ -442,23 +435,61 @@ into a security`
`442`	`435`	`Security Passports`
`443`	`436`	`~~~~~~~~~~~~~~~~~~`
`444`	`437`
	`438`	`+..versionadded::5.2`
	`439`	`+`
	`440`	+ The ``UserBadge`` was introduced in Symfony 5.2. Prior to 5.2, the user
	`441`	`+ instance was provided directly to the passport.`
	`442`	`+`
`445`	`443`	`A passport is an object that contains the user that will be authenticated as`
`446`	`444`	`well as other pieces of information, like whether a password should be checked`
`447`	`445`	`or if "remember me" functionality should be enabled.`
`448`	`446`
`449`	`447`	`The default`
`450`	`448`	:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\Passport`
`451`		`-requires a user object and credentials. The following credential classes`
`452`		`-are supported by default:`
	`449`	`+requires a user and credentials.`
	`450`	`+`
	`451`	`+Use the`
	`452`	+:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\Badge\\UserBadge`
	`453`	+to attach the user to the passport. The ``UserBadge`` requires a user
	`454`	`+identifier (e.g. the username or email), which is used to load the user`
	`455`	+using:ref:`the user provider<security-user-providers>`::
`453`	`456`
	`457`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
	`458`	`+`
	`459`	`+ // ...`
	`460`	`+ $passport = new Passport(new UserBadge($email), $credentials);`
	`461`	`+`
	`462`	`+..note::`
	`463`	`+`
	`464`	`+ You can optionally pass a user loader as second argument to the`
	`465`	+ ``UserBadge``. This callable receives the ``$userIdentifier``
	`466`	+ and must return a ``UserInterface`` object (otherwise a
	`467`	+ ``UsernameNotFoundException`` is thrown)::
	`468`	`+`
	`469`	`+ // ...`
	`470`	`+ $passport = new Passport(`
	`471`	`+ new UserBadge($email, function ($userIdentifier) {`
	`472`	`+ return $this->userRepository->findOneBy(['email' => $userIdentifier]);`
	`473`	`+ }),`
	`474`	`+ $credentials`
	`475`	`+ );`
	`476`	`+`
	`477`	`+The following credential classes are supported by default:`
`454`	`478`
`455`	`479`	:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\Credentials\\PasswordCredentials`
`456`	`480`	This requires a plaintext ``$password``, which is validated using the
`457`		-:ref:`password encoder configured for the user<security-encoding-user-password>`.
	`481`	+:ref:`password encoder configured for the user<security-encoding-user-password>`::
	`482`	`+`
	`483`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;`
	`484`	`+`
	`485`	`+ // ...`
	`486`	`+ return new Passport($user, new PasswordCredentials($plaintextPassword));`
`458`	`487`
`459`	`488`	:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\Credentials\\CustomCredentials`
`460`	`489`	`Allows a custom closure to check credentials::`
`461`	`490`
	`491`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials;`
	`492`	`+`
`462`	`493`	`// ...`
`463`	`494`	`return new Passport($user, new CustomCredentials(`
`464`	`495`	// If this function returns anything else than `true`, the credentials
`@@ -472,12 +503,15 @@ are supported by default:`
`472`	`503`	`$apiToken`
`473`	`504`	`));`
`474`	`505`
`475`		`-..note::`
`476`	`506`
`477`		`- If you don't need any credentials to be checked (e.g. a JWT token), you`
`478`		`- can use the`
`479`		-:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\SelfValidatingPassport`.
`480`		- This class only requires a user and optionally `Passport Badges`_.
	`507`	`+Self Validating Passport`
	`508`	`+........................`
	`509`	`+`
	`510`	`+If you don't need any credentials to be checked (e.g. when using API`
	`511`	`+tokens), you can use the`
	`512`	+:class:`Symfony\\Component\\Security\\Http\\Authenticator\\Passport\\SelfValidatingPassport`.
	`513`	+This class only requires a ``UserBadge`` object and optionally `Passport
	`514`	+Badges`_.
`481`	`515`
`482`	`516`	`Passport Badges`
`483`	`517`	`~~~~~~~~~~~~~~~`
`@@ -507,16 +541,21 @@ the following badges are supported:`
`507`	`541`	`initiated). This skips the`
`508`	`542`	:doc:`pre-authentication user checker</security/user_checkers>`.
`509`	`543`
`510`		`-For instance, if you want to add CSRF and password migration to your custom`
`511`		`-authenticator, you would initialize the passport like this::`
	`544`	`+..versionadded::5.2`
	`545`	`+`
	`546`	+ Since 5.2, the ``PasswordUpgradeBadge`` is automatically added to
	`547`	+ the passport if the passport has ``PasswordCredentials``.
	`548`	`+`
	`549`	`+For instance, if you want to add CSRF to your custom authenticator, you`
	`550`	`+would initialize the passport like this::`
`512`	`551`
`513`	`552`	`// src/Service/LoginAuthenticator.php`
`514`	`553`	`namespace App\Service;`
`515`	`554`
`516`	`555`	`// ...`
`517`	`556`	`use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;`
`518`	`557`	`use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;`
`519`		`- use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;`
	`558`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
`520`	`559`	`use Symfony\Component\Security\Http\Authenticator\Passport\Passport;`
`521`	`560`	`use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;`
`522`	`561`
`@@ -528,14 +567,13 @@ authenticator, you would initialize the passport like this::`
`528`	`567`	`$username = $request->request->get('username');`
`529`	`568`	`$csrfToken = $request->request->get('csrf_token');`
`530`	`569`
`531`		`- // ... get the $user from the $username and validate no`
`532`		`- // parameter is empty`
	`570`	`+ // ... validate no parameter is empty`
`533`	`571`
`534`		`- return new Passport($user, new PasswordCredentials($password), [`
`535`		`-// $this->userRepository must implement PasswordUpgraderInterface`
`536`		`- newPasswordUpgradeBadge($password, $this->userRepository),`
`537`		`- new CsrfTokenBadge('login', $csrfToken),`
`538`		`-]);`
	`572`	`+ return new Passport(`
	`573`	`+new UserBadge($user),`
	`574`	`+ newPasswordCredentials($password),`
	`575`	`+[new CsrfTokenBadge('login', $csrfToken)]`
	`576`	`+ );`
`539`	`577`	`}`
`540`	`578`	`}`
`541`	`579`
`@@ -547,7 +585,7 @@ authenticator, you would initialize the passport like this::`
`547`	`585`	``createAuthenticatedToken()``)::
`548`	`586`
`549`	`587`	`// ...`
`550`		`- use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;`
	`588`	`+ use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
`551`	`589`
`552`	`590`	`class LoginAuthenticator extends AbstractAuthenticator`
`553`	`591`	`{`
`@@ -557,7 +595,7 @@ authenticator, you would initialize the passport like this::`
`557`	`595`	`{`
`558`	`596`	`// ... process the request`
`559`	`597`
`560`		`- $passport = new SelfValidatingPassport($username, []);`
	`598`	`+ $passport = new SelfValidatingPassport(new UserBadge($username), []);`
`561`	`599`
`562`	`600`	`// set a custom attribute (e.g. scope)`
`563`	`601`	`$passport->setAttribute('scope', $oauthScope);`

`‎setup.rst‎`

Lines changed: 4 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -50,10 +50,10 @@ application:`
`50`	`50`	`..code-block::terminal`
`51`	`51`
`52`	`52`	`# run this if you are building a traditional web application`
`53`		`- $ symfony new my_project_name --version=next --full`
	`53`	`+ $ symfony new my_project_name --full`
`54`	`54`
`55`	`55`	`# run this if you are building a microservice, console application or API`
`56`		`- $ symfony new my_project_name --version=next`
	`56`	`+ $ symfony new my_project_name`
`57`	`57`
`58`	`58`	`The only difference between these two commands is the number of packages`
`59`	`59`	installed by default. The ``--full`` option installs all the packages that you
`@@ -65,10 +65,10 @@ Symfony application using Composer:`
`65`	`65`	`..code-block::terminal`
`66`	`66`
`67`	`67`	`# run this if you are building a traditional web application`
`68`		`- $ composer create-project symfony/website-skeleton:"5.2.x@dev" my_project_name`
	`68`	`+ $ composer create-project symfony/website-skeleton my_project_name`
`69`	`69`
`70`	`70`	`# run this if you are building a microservice, console application or API`
`71`		`- $ composer create-project symfony/skeleton:"5.2.x@dev" my_project_name`
	`71`	`+ $ composer create-project symfony/skeleton my_project_name`
`72`	`72`
`73`	`73`	`No matter which command you run to create the Symfony application. All of them`
`74`	`74`	will create a new ``my_project_name/`` directory, download some dependencies

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commitd495527

File tree

3 files changed

3 files changed

`‎routing.rst‎`

`‎security/experimental_authenticators.rst‎`

`‎setup.rst‎`

0 commit comments