[Security] validate empty passwords again

2017-07-14 16:01:02 +02:00 · 2017-07-14 16:01:02 +02:00 · 878198cefa
parent 62fdf9c72b
commit 878198cefa
2 changed files with 25 additions and 0 deletions
--- a/src/Symfony/Component/Security/Core/Tests/Validator/Constraints/UserPasswordValidatorTest.php
+++ b/src/Symfony/Component/Security/Core/Tests/Validator/Constraints/UserPasswordValidatorTest.php
@ -90,6 +90,29 @@ abstract class UserPasswordValidatorTest extends AbstractConstraintValidatorTest
            ->assertRaised();
    }

+    /**
+     * @dataProvider emptyPasswordData
+     */
+    public function testEmptyPasswordsAreNotValid($password)
+    {
+        $constraint = new UserPassword(array(
+            'message' => 'myMessage',
+        ));
+
+        $this->validator->validate($password, $constraint);
+
+        $this->buildViolation('myMessage')
+            ->assertRaised();
+    }
+
+    public function emptyPasswordData()
+    {
+        return array(
+            array(null),
+            array(''),
+        );
+    }
+
    /**
     * @expectedException \Symfony\Component\Validator\Exception\ConstraintDefinitionException
     */
--- a/src/Symfony/Component/Security/Core/Validator/Constraints/UserPasswordValidator.php
+++ b/src/Symfony/Component/Security/Core/Validator/Constraints/UserPasswordValidator.php
@ -40,6 +40,8 @@ class UserPasswordValidator extends ConstraintValidator
        }

        if (null === $password || '' === $password) {
+            $this->context->addViolation($constraint->message);
+
            return;
        }