Johannes Schmitt
5c7fe8f866
[Security] simplified encoder factory implementation
2011-02-14 20:55:06 +01:00
Johannes M. Schmitt
b9f4eab5c2
[Security/Acl] added pre-generated schemas
2011-02-14 20:55:06 +01:00
Deni
657f90a931
[Security] Fixed missed argument in call custom handler when authentication is successful.
2011-02-13 22:27:28 +01:00
dordille
205621dee8
Changed namepace use of SecurityContext to SecurityContextInterface so that constant SecurityContextInterface::LAST_USERNAME would resolve properly
...
Also changed method signature of __construct to take and instance of SecurityContextInterface instead of SecurityContext
2011-02-13 10:36:15 +01:00
Johannes M. Schmitt
3dfc09cd8d
[Security] fixes some regressions
2011-02-13 00:15:57 +01:00
Jordi Boggiano
9bcd1b3e5f
[Security] Fixed indenting
2011-02-12 22:14:16 +01:00
Johannes Schmitt
9749da6e52
[Security] performance improvements of PermissionGrantingStrategy
2011-02-12 21:53:04 +01:00
Johannes Schmitt
19bbafc441
[Security] Refactored security context, moved getUser() implementation to templating
2011-02-12 21:53:04 +01:00
Johannes Schmitt
66fbbd6b17
[Security] removed __toString() from AccountInterface
2011-02-12 21:53:04 +01:00
Christophe Coevoet
74b87294c2
Fixed access denied handling
2011-02-10 15:32:59 +01:00
Fabien Potencier
37537e3e8c
fixed previous commit
2011-02-04 19:38:42 +01:00
Lukas Kahwe Smith
dd71501f54
some fixes by just "blindly" trying to make phpStorm code analysis happier
2011-02-04 19:30:28 +01:00
Lukas Kahwe Smith
661d5d236c
fixed method call, cosmetic variable rename
2011-02-04 00:32:15 +01:00
Fabien Potencier
5288381f61
Revert "[Security] Missing Event namespace in SwitchUserListener"
...
This reverts commit 0169892dcd
.
2011-02-02 14:35:29 +01:00
Jeremy Mikola
0169892dcd
[Security] Missing Event namespace in SwitchUserListener
2011-02-02 11:32:56 +01:00
Johannes M. Schmitt
2b697423b4
[Security] bug fix in FormAuthenticationEntryPoint
2011-02-02 11:31:28 +01:00
Sebastian Utz
4d5853866a
[Security] fixed a Token serialization bug
2011-02-02 11:31:28 +01:00
Johannes M. Schmitt
fbc21fedf7
[Security] some bug fixes
2011-02-02 11:31:28 +01:00
Sergey Linnik
92ddaa11cd
Fixed typo
2011-01-28 18:46:27 +01:00
Bulat Shakirzyanov
81219bba15
[Security] fixed typo
2011-01-28 18:20:59 +01:00
Johannes M. Schmitt
8ccb8eb8c2
added two events "security.interactive_login", and "security.switch_user"
2011-01-27 13:49:01 +01:00
Johannes M. Schmitt
00d3d8c3bc
renamed PreAuthenticatedListener to AbstractPreAuthenticatedListener to be consistent
2011-01-27 13:49:01 +01:00
Johannes Schmitt
139510a78e
added some doc comments
2011-01-27 13:49:00 +01:00
Johannes M. Schmitt
cf64d2cfe7
namespace changes
...
Symfony\Component\Security -> Symfony\Component\Security\Core
Symfony\Component\Security\Acl remains unchanged
Symfony\Component\HttpKernel\Security -> Symfony\Component\Security\Http
2011-01-26 22:23:20 +01:00
Johannes Schmitt
e0fe42d050
removed isAuthenticated() from SecurityContext
2011-01-26 16:38:54 +01:00
Johannes Schmitt
57ae50e894
[Security] many improvements, and fixes
2011-01-26 16:38:54 +01:00
Lukas Kahwe Smith
ddea635a51
fixes else -> } else
2011-01-19 07:20:23 +01:00
Dominique Bongiraud
64fb94c725
normalized license messages in PHP files
2011-01-18 08:07:46 +01:00
Fabien Potencier
1c3a01b25c
removed duplicate code
2011-01-07 17:14:41 +01:00
Johannes M. Schmitt
314defa8b4
added generic encoder factory
2011-01-06 19:20:56 +01:00
Johannes M. Schmitt
0449dbdc5d
added extra exception if only a partial result is found
2011-01-05 22:51:05 +01:00
Johannes M. Schmitt
55a48bcfa6
optimized AclVoter, added unit test
2011-01-03 07:46:16 +01:00
Johannes M. Schmitt
a99d8c8558
fix possible duplicate security identities
2011-01-02 10:53:54 +01:00
Johannes Schmitt
b4288459cc
added ACL system to the Security Component
2010-12-31 09:25:53 +01:00
Johannes Schmitt
27f540463a
added generic encoder factory
2010-12-21 16:23:46 +01:00
Fabien Potencier
b57411b5ec
renamed reloadUserByAccount() to loadUserByAccount()
2010-12-18 08:15:13 +01:00
Johannes Schmitt
df6ffbbf07
remove user provider name
2010-12-18 08:10:53 +01:00
Johannes Schmitt
3c692bd160
fixed user refreshing after unserialization
2010-12-15 17:38:30 +01:00
Johannes Schmitt
abe8047262
added authentication trust resolver
2010-12-12 10:49:43 +01:00
Fabien Potencier
9944542811
[Security] fixed method visibility
2010-12-12 08:02:13 +01:00
Fabien Potencier
131776001f
removed ForbiddenHttpException
...
Both HttpKernel and Security define a 403 exception:
* Symfony\Component\HttpKernel\Exception\ForbiddenHttpException
* Symfony\Component\Security\Exception\AccessDeniedException
The one in HttpKernel has been removed in favor of the Security one.
2010-12-10 09:00:06 +01:00
Fabien Potencier
944d91c1df
made some method name changes to have a better coherence throughout the framework
...
When an object has a "main" many relation with related "things" (objects,
parameters, ...), the method names are normalized:
* get()
* set()
* all()
* replace()
* remove()
* clear()
* isEmpty()
* add()
* register()
* count()
* keys()
The classes below follow this method naming convention:
* BrowserKit\CookieJar -> Cookie
* BrowserKit\History -> Request
* Console\Application -> Command
* Console\Application\Helper\HelperSet -> HelperInterface
* DependencyInjection\Container -> services
* DependencyInjection\ContainerBuilder -> services
* DependencyInjection\ParameterBag\ParameterBag -> parameters
* DependencyInjection\ParameterBag\FrozenParameterBag -> parameters
* DomCrawler\Form -> FormField
* EventDispatcher\Event -> parameters
* Form\FieldGroup -> Field
* HttpFoundation\HeaderBag -> headers
* HttpFoundation\ParameterBag -> parameters
* HttpFoundation\Session -> attributes
* HttpKernel\Profiler\Profiler -> DataCollectorInterface
* Routing\RouteCollection -> Route
* Security\Authentication\AuthenticationProviderManager -> AuthenticationProviderInterface
* Templating\Engine -> HelperInterface
* Translation\MessageCatalogue -> messages
The usage of these methods are only allowed when it is clear that there is a
main relation:
* a CookieJar has many Cookies;
* a Container has many services and many parameters (as services is the main
relation, we use the naming convention for this relation);
* a Console Input has many arguments and many options. There is no "main"
relation, and so the naming convention does not apply.
For many relations where the convention does not apply, the following methods
must be used instead (where XXX is the name of the related thing):
* get() -> getXXX()
* set() -> setXXX()
* all() -> getXXXs()
* replace() -> setXXXs()
* remove() -> removeXXX()
* clear() -> clearXXX()
* isEmpty() -> isEmptyXXX()
* add() -> addXXX()
* register() -> registerXXX()
* count() -> countXXX()
* keys()
2010-11-25 17:30:06 +01:00
Fabien Potencier
a19cdce1bc
[Security] added some missing unit tests
2010-10-31 23:41:36 +01:00
Fabien Potencier
ec417578ca
[Security] added unit tests to some authenticated providers (code coverage is more than 96% for the Security component now)
2010-10-31 15:41:15 +01:00
Fabien Potencier
3d5054f21f
[Security] added unit tests for the Authentication sub-namespace
2010-10-31 13:39:12 +01:00
Johannes M. Schmitt
3463f47698
applies base64 encoding directly to the binary data instead of their hexadecimal representation
2010-10-24 10:57:06 +02:00
Dominique Bongiraud
a85bca395a
[Security]Fixed markup
2010-10-24 09:55:32 +02:00
Dominique Bongiraud
66ff8073b9
[Security]Fixed CS
2010-10-24 09:55:31 +02:00
Fabien Potencier
4027f751e3
[Security] added more unit tests
2010-10-22 17:48:58 +02:00
Fabien Potencier
d2b184e058
[Security] removed type hint in AuthenticationException as the extra information can be of different classes
2010-10-22 15:19:13 +02:00
Johannes Schmitt
d077ac4158
[Security] changed encoders to use hash() function whenver possible and replaced sha1 with sha256 as default algorithm
2010-10-22 13:24:29 +02:00
Victor Berchet
4dacdcc4ec
[Security] Use a negative length parameter to simplify the code
2010-10-21 18:24:57 +02:00
Fabien Potencier
82f8ab839f
[Security] added some unit tests (WIP)
2010-10-21 18:14:32 +02:00
Fabien Potencier
836c512585
fixed interfaces problems
2010-10-21 17:16:31 +02:00
Artur Kotyrba
2682bc2be5
[Security] Fixed typo
2010-10-21 08:30:46 +02:00
Fabien Potencier
0749038e73
[Security] changed the way passwords are compared to avoid timing attacks
2010-10-21 07:36:55 +02:00
Pascal Borreli
437f8c7a86
[Security] Fixed typo
2010-10-20 07:07:54 +02:00
Pascal Borreli
d067d5da69
[Security] Fixed coding standard
2010-10-19 17:22:31 +02:00
Pascal Borreli
fde278d7a8
[Security] Fixed typo
2010-10-19 17:21:28 +02:00
Fabien Potencier
f216f313e8
added the Security Component and its integration into the MVC framework
...
Happy birthday symfony!
2010-10-19 13:33:17 +02:00