diogo/symfony
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[Security] made sure that we always replace the security access denied exception to an HTTP one

Browse Source
This commit is contained in:
Fabien Potencier 2012-07-13 11:36:57 +02:00
parent 7dc89013eb
commit 46071f3238
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/Symfony/Component/Security/Http/Firewall/ExceptionListener.php
View File

@ -97,6 +97,8 @@ class ExceptionListener
return; return;
} }
} elseif ($exception instanceof AccessDeniedException) { } elseif ($exception instanceof AccessDeniedException) {
$event->setException(new AccessDeniedHttpException($exception->getMessage(), $exception));
$token = $this->context->getToken(); $token = $this->context->getToken();
if (!$this->authenticationTrustResolver->isFullFledged($token)) { if (!$this->authenticationTrustResolver->isFullFledged($token)) {
if (null !== $this->logger) { if (null !== $this->logger) {
@ -129,8 +131,6 @@ class ExceptionListener
$response = $event->getKernel()->handle($subRequest, HttpKernelInterface::SUB_REQUEST, true); $response = $event->getKernel()->handle($subRequest, HttpKernelInterface::SUB_REQUEST, true);
$response->setStatusCode(403); $response->setStatusCode(403);
} else { } else {
$event->setException(new AccessDeniedHttpException($exception->getMessage(), $exception));
return; return;
} }
} catch (\Exception $e) { } catch (\Exception $e) {
@ -148,8 +148,6 @@ class ExceptionListener
$this->logger->info(sprintf('Logout exception occurred; wrapping with AccessDeniedHttpException (%s)', $exception->getMessage())); $this->logger->info(sprintf('Logout exception occurred; wrapping with AccessDeniedHttpException (%s)', $exception->getMessage()));
} }
$event->setException(new AccessDeniedHttpException($exception->getMessage(), $exception));
return; return;
} else { } else {
return; return;