[Security] Revise UserPasswordEncoderInterface::needsRehash()
This commit is contained in:
parent
40fe1610d2
commit
c5a283d417
@ -50,10 +50,10 @@ class UserPasswordEncoder implements UserPasswordEncoderInterface
|
||||
/**
|
||||
* {@inheritdoc}
|
||||
*/
|
||||
public function needsRehash(UserInterface $user, string $encoded): bool
|
||||
public function needsRehash(UserInterface $user): bool
|
||||
{
|
||||
$encoder = $this->encoderFactory->getEncoder($user);
|
||||
|
||||
return method_exists($encoder, 'needsRehash') && $encoder->needsRehash($encoded);
|
||||
return method_exists($encoder, 'needsRehash') && $encoder->needsRehash($user->getPassword());
|
||||
}
|
||||
}
|
||||
|
@ -18,7 +18,7 @@ use Symfony\Component\Security\Core\User\UserInterface;
|
||||
*
|
||||
* @author Ariel Ferrandini <arielferrandini@gmail.com>
|
||||
*
|
||||
* @method bool needsRehash(UserInterface $user, string $encoded)
|
||||
* @method bool needsRehash(UserInterface $user)
|
||||
*/
|
||||
interface UserPasswordEncoderInterface
|
||||
{
|
||||
|
@ -85,9 +85,9 @@ class UserPasswordEncoderTest extends TestCase
|
||||
|
||||
$passwordEncoder = new UserPasswordEncoder($mockEncoderFactory);
|
||||
|
||||
$hash = $passwordEncoder->encodePassword($user, 'foo', 'salt');
|
||||
$this->assertFalse($passwordEncoder->needsRehash($user, $hash));
|
||||
$this->assertTrue($passwordEncoder->needsRehash($user, $hash));
|
||||
$this->assertFalse($passwordEncoder->needsRehash($user, $hash));
|
||||
$user->setPassword($passwordEncoder->encodePassword($user, 'foo', 'salt'));
|
||||
$this->assertFalse($passwordEncoder->needsRehash($user));
|
||||
$this->assertTrue($passwordEncoder->needsRehash($user));
|
||||
$this->assertFalse($passwordEncoder->needsRehash($user));
|
||||
}
|
||||
}
|
||||
|
@ -164,4 +164,9 @@ final class User implements UserInterface, EquatableInterface, AdvancedUserInter
|
||||
|
||||
return true;
|
||||
}
|
||||
|
||||
public function setPassword(string $password)
|
||||
{
|
||||
$this->password = $password;
|
||||
}
|
||||
}
|
||||
|
Reference in New Issue
Block a user