[Security] Added a check for strategies in AccessDecisionManager
This commit is contained in:
parent
43e066f7ab
commit
ee36380524
@ -43,8 +43,13 @@ class AccessDecisionManager implements AccessDecisionManagerInterface
|
||||
throw new \InvalidArgumentException('You must at least add one voter.');
|
||||
}
|
||||
|
||||
$strategyMethod = 'decide'.ucfirst($strategy);
|
||||
if (!is_callable(array($this, $strategyMethod))) {
|
||||
throw new \InvalidArgumentException(sprintf('The strategy "%s" is not supported.', $strategy));
|
||||
}
|
||||
|
||||
$this->voters = $voters;
|
||||
$this->strategy = 'decide'.ucfirst($strategy);
|
||||
$this->strategy = $strategyMethod;
|
||||
$this->allowIfAllAbstainDecisions = (Boolean) $allowIfAllAbstainDecisions;
|
||||
$this->allowIfEqualGrantedDeniedDecisions = (Boolean) $allowIfEqualGrantedDeniedDecisions;
|
||||
}
|
||||
|
@ -54,6 +54,14 @@ class AccessDecisionManagerTest extends \PHPUnit_Framework_TestCase
|
||||
$manager = new AccessDecisionManager(array());
|
||||
}
|
||||
|
||||
/**
|
||||
* @expectedException \InvalidArgumentException
|
||||
*/
|
||||
public function testSetUnsupportedStrategy()
|
||||
{
|
||||
new AccessDecisionManager(array($this->getVoter(VoterInterface::ACCESS_GRANTED)), 'fooBar');
|
||||
}
|
||||
|
||||
/**
|
||||
* @dataProvider getStrategyTests
|
||||
*/
|
||||
|
Reference in New Issue
Block a user