Fabien Potencier
fa9b920051
[Security] renamed UserProviderInterface::loadUser() to refreshUser()
2011-06-16 18:00:36 +02:00
Pascal Borreli
f5eaa404c7
[Tests] Fixed typos
2011-06-12 20:52:53 +00:00
Fabien Potencier
17cd08dc6c
fixed CS
2011-06-08 19:56:59 +02:00
Fabien Potencier
65200aa86a
added missing license headers
2011-05-31 10:57:06 +02:00
Johannes M. Schmitt
bac3ee86f9
[Security] fixes a regression in the AclVoter
2011-05-30 10:04:46 +02:00
Johannes Schmitt
53f5c23c8f
[Security/Acl] small voter refactoring
2011-05-18 12:48:50 +02:00
Johannes Schmitt
fa0ef500ae
[Tests] updated invalid use statement
2011-05-16 11:57:12 +02:00
Johannes Schmitt
48dc85dc43
[Security/Acl] fixes #853
2011-05-14 14:19:55 +02:00
Brikou CARRE
e898445b94
removed empty lines/trailing spaces
2011-04-15 21:12:02 +02:00
Fabien Potencier
66c4bc727c
[HttpFoundation] renamed Cookie::getExpire() to getExpiresTime() to be consistent with the DomCrawler component
2011-04-13 20:10:39 +02:00
Gustavo Adrian
2e96f2c63d
Fixed exception that was thrown while updating a field ACE
2011-04-05 13:05:20 -03:00
Gustavo Adrian
bedbe51081
[Security] ACL: AclVoter::vote only gets an ObjectIdentity if $object is not an instance of ObjectIdentityInterface
2011-03-24 21:54:21 -03:00
hhamon
230b3fff53
added unit tests for User::equals() method
2011-03-21 09:26:09 +01:00
Bernhard Schussek
466f1b99c5
[Security] Fixed method names in the Firewall listeners
2011-03-17 13:24:23 +01:00
Bernhard Schussek
5f14d8d6aa
Merge remote branch 'symfony/master' into event-manager
...
Conflicts:
src/Symfony/Bundle/AsseticBundle/CacheWarmer/AssetWriterCacheWarmer.php
src/Symfony/Bundle/AsseticBundle/Tests/CacheWarmer/AssetWriterCacheWarmerTest.php
src/Symfony/Bundle/FrameworkBundle/Profiler/ProfilerListener.php
src/Symfony/Bundle/FrameworkBundle/Resources/config/profiling.xml
src/Symfony/Component/HttpKernel/HttpKernel.php
src/Symfony/Component/Security/Http/Firewall/AbstractAuthenticationListener.php
src/Symfony/Component/Security/Http/Firewall/AbstractPreAuthenticatedListener.php
2011-03-17 12:34:12 +01:00
Johannes M. Schmitt
4539b47522
[Security] small performance optimization
2011-03-14 17:41:33 +01:00
Bernhard Schussek
06c682b4fb
Switched from Doctrine's EventManager implementation to the EventManager clone in Symfony2 (now called EventDispatcher again)
2011-03-13 19:49:10 +01:00
Bernhard Schussek
25931caeab
Merge remote branch 'symfony/master' into event-manager
...
Conflicts:
src/Symfony/Bundle/FrameworkBundle/Debug/TraceableEventManager.php
src/Symfony/Bundle/WebProfilerBundle/WebDebugToolbarListener.php
src/Symfony/Component/Security/Http/Firewall.php
src/Symfony/Component/Security/Http/Firewall/AbstractAuthenticationListener.php
src/Symfony/Component/Security/Http/Firewall/AbstractPreAuthenticatedListener.php
src/Symfony/Component/Security/Http/Firewall/AccessListener.php
src/Symfony/Component/Security/Http/Firewall/AnonymousAuthenticationListener.php
src/Symfony/Component/Security/Http/Firewall/BasicAuthenticationListener.php
src/Symfony/Component/Security/Http/Firewall/ChannelListener.php
src/Symfony/Component/Security/Http/Firewall/ContextListener.php
src/Symfony/Component/Security/Http/Firewall/DigestAuthenticationListener.php
src/Symfony/Component/Security/Http/Firewall/ExceptionListener.php
src/Symfony/Component/Security/Http/Firewall/ListenerInterface.php
src/Symfony/Component/Security/Http/Firewall/LogoutListener.php
src/Symfony/Component/Security/Http/Firewall/RememberMeListener.php
src/Symfony/Component/Security/Http/Firewall/SwitchUserListener.php
tests/Symfony/Tests/Component/Security/Http/Firewall/RememberMeListenerTest.php
2011-03-13 19:15:25 +01:00
Pascal Borreli
fb33358d20
[Security] Fixed test
2011-03-12 16:17:42 -08:00
Johannes Schmitt
70867f06e9
re-added a __toString method for debugging purposes
2011-03-12 13:24:57 +01:00
Johannes Schmitt
97125269d2
[Security] fixed some tests
2011-03-11 12:50:52 +01:00
Johannes M. Schmitt
3d97638813
[Security] refactored remember-me code
2011-03-11 01:19:55 +01:00
Johannes M. Schmitt
13665fc113
[Security] added some more tests
2011-03-10 10:25:33 +01:00
Johannes Schmitt
1d5538fc60
[Security] various changes, see below
...
- visibility changes from protected to private
- AccountInterface -> UserInterface
- SecurityContext::vote() -> SecurityContext::isGranted()
2011-03-10 10:25:32 +01:00
Bernhard Schussek
2cf3779a2c
Renamed EventArgs classes and adapted remaining code to EventManager
...
The only missing part is ContainerAwareEventManager::addEventSubscriberService(),
because I'm not sure how to find out the class name of a service in the DIC.
Also, inline documentation of this code needs to be finished once it is accepted.
2011-03-07 19:16:05 +01:00
Kris Wallsmith
2d1d2ba893
[Security] cleaned up opt-in to benchmark test
2011-03-06 20:06:13 +01:00
Fabien Potencier
8c423edfef
replaced symfony-project.org by symfony.com
2011-03-06 12:40:06 +01:00
Fabien Potencier
a137d72351
Merge remote branch 'hhamon/cookie_path_fix'
...
* hhamon/cookie_path_fix:
[Security] renamed Cookie::isHttponly() to Cookie::isHttpOnly()
[HttpKernel] renamed Cookie::isHttponly() to Cookie::isHttpOnly()
[BrowserKit] renamed Cookie::isHttponly() to Cookie::isHttpOnly()
[HttpFoundation] fix cookie path default value to / and added some new unit tests to cover the class
2011-03-06 10:44:40 +01:00
Johannes Schmitt
f82b89cdc5
[Security] changed defaults for MessageDigestEncoder
...
- encode_as_base64 set to true
- iterations increased to 5000 from 1
2011-03-05 13:45:35 +01:00
Hugo Hamon
cd5d1bd62e
[Security] renamed Cookie::isHttponly() to Cookie::isHttpOnly()
2011-03-03 14:52:53 +01:00
Johannes Schmitt
97ee92e7b0
Merge branch 'CopyTokenAttributesInProviders' of https://github.com/opensky/symfony into opensky-CopyTokenAttributesInProviders
2011-02-26 21:47:57 +01:00
Johannes Schmitt
621a79f1f2
[Security] added method to retrieve the configured remember-me parameter
2011-02-26 21:44:40 +01:00
Jeremy Mikola
5113886f34
[Security] Copy token attributes when auth providers create a new token from another
...
PreAuthenticatedAuthenticationProvider and UserAuthenticationProvider tend to copy a token instead of modifying it during their authenticate() methods, which is probably a good idea if the token might be immutable. Ensure that the token's attributes get copied along with everything else.
2011-02-23 16:03:01 -05:00
Johannes M. Schmitt
53f3ff8258
[Security] adds a chain user provider
2011-02-16 23:00:27 +01:00
Jeremy Mikola
cc4eb6b40f
[Security] Add providerKey to PreAuthenticatedToken tokens constructed by PreAuthenticatedAuthenticationProvider
2011-02-15 21:55:24 +01:00
Jeremy Mikola
b8d574087f
[Security] Allow authentication tokens to hold attributes
2011-02-15 21:50:02 +01:00
Johannes M. Schmitt
44b89e5ac3
[Security] fixes a bug when clearing cookies on logout
2011-02-14 20:55:07 +01:00
Johannes Schmitt
5c7fe8f866
[Security] simplified encoder factory implementation
2011-02-14 20:55:06 +01:00
Johannes Schmitt
19bbafc441
[Security] Refactored security context, moved getUser() implementation to templating
2011-02-12 21:53:04 +01:00
Johannes Schmitt
66fbbd6b17
[Security] removed __toString() from AccountInterface
2011-02-12 21:53:04 +01:00
Johannes M. Schmitt
cf64d2cfe7
namespace changes
...
Symfony\Component\Security -> Symfony\Component\Security\Core
Symfony\Component\Security\Acl remains unchanged
Symfony\Component\HttpKernel\Security -> Symfony\Component\Security\Http
2011-01-26 22:23:20 +01:00
Johannes Schmitt
e0fe42d050
removed isAuthenticated() from SecurityContext
2011-01-26 16:38:54 +01:00
Johannes Schmitt
57ae50e894
[Security] many improvements, and fixes
2011-01-26 16:38:54 +01:00
Lukas Kahwe Smith
ddea635a51
fixes else -> } else
2011-01-19 07:20:23 +01:00
Dominique Bongiraud
64fb94c725
normalized license messages in PHP files
2011-01-18 08:07:46 +01:00
Jordi Boggiano
964bf4356e
Fixed Security tests failing when D2 is not present
2011-01-07 14:30:52 +01:00
Johannes M. Schmitt
314defa8b4
added generic encoder factory
2011-01-06 19:20:56 +01:00
Johannes M. Schmitt
0449dbdc5d
added extra exception if only a partial result is found
2011-01-05 22:51:05 +01:00
Johannes M. Schmitt
55a48bcfa6
optimized AclVoter, added unit test
2011-01-03 07:46:16 +01:00
Johannes M. Schmitt
a99d8c8558
fix possible duplicate security identities
2011-01-02 10:53:54 +01:00
Johannes Schmitt
b4288459cc
added ACL system to the Security Component
2010-12-31 09:25:53 +01:00
Johannes Schmitt
27f540463a
added generic encoder factory
2010-12-21 16:23:46 +01:00
Johannes Schmitt
df6ffbbf07
remove user provider name
2010-12-18 08:10:53 +01:00
Johannes Schmitt
3c692bd160
fixed user refreshing after unserialization
2010-12-15 17:38:30 +01:00
Johannes Schmitt
abe8047262
added authentication trust resolver
2010-12-12 10:49:43 +01:00
Fabien Potencier
7cb5dd1fdc
[Security] fixed typo
2010-12-08 07:06:08 +01:00
Fabien Potencier
944d91c1df
made some method name changes to have a better coherence throughout the framework
...
When an object has a "main" many relation with related "things" (objects,
parameters, ...), the method names are normalized:
* get()
* set()
* all()
* replace()
* remove()
* clear()
* isEmpty()
* add()
* register()
* count()
* keys()
The classes below follow this method naming convention:
* BrowserKit\CookieJar -> Cookie
* BrowserKit\History -> Request
* Console\Application -> Command
* Console\Application\Helper\HelperSet -> HelperInterface
* DependencyInjection\Container -> services
* DependencyInjection\ContainerBuilder -> services
* DependencyInjection\ParameterBag\ParameterBag -> parameters
* DependencyInjection\ParameterBag\FrozenParameterBag -> parameters
* DomCrawler\Form -> FormField
* EventDispatcher\Event -> parameters
* Form\FieldGroup -> Field
* HttpFoundation\HeaderBag -> headers
* HttpFoundation\ParameterBag -> parameters
* HttpFoundation\Session -> attributes
* HttpKernel\Profiler\Profiler -> DataCollectorInterface
* Routing\RouteCollection -> Route
* Security\Authentication\AuthenticationProviderManager -> AuthenticationProviderInterface
* Templating\Engine -> HelperInterface
* Translation\MessageCatalogue -> messages
The usage of these methods are only allowed when it is clear that there is a
main relation:
* a CookieJar has many Cookies;
* a Container has many services and many parameters (as services is the main
relation, we use the naming convention for this relation);
* a Console Input has many arguments and many options. There is no "main"
relation, and so the naming convention does not apply.
For many relations where the convention does not apply, the following methods
must be used instead (where XXX is the name of the related thing):
* get() -> getXXX()
* set() -> setXXX()
* all() -> getXXXs()
* replace() -> setXXXs()
* remove() -> removeXXX()
* clear() -> clearXXX()
* isEmpty() -> isEmptyXXX()
* add() -> addXXX()
* register() -> registerXXX()
* count() -> countXXX()
* keys()
2010-11-25 17:30:06 +01:00
Fabien Potencier
a19cdce1bc
[Security] added some missing unit tests
2010-10-31 23:41:36 +01:00
Fabien Potencier
ec417578ca
[Security] added unit tests to some authenticated providers (code coverage is more than 96% for the Security component now)
2010-10-31 15:41:15 +01:00
Fabien Potencier
3d5054f21f
[Security] added unit tests for the Authentication sub-namespace
2010-10-31 13:39:12 +01:00
Johannes M. Schmitt
3463f47698
applies base64 encoding directly to the binary data instead of their hexadecimal representation
2010-10-24 10:57:06 +02:00
Fabien Potencier
4027f751e3
[Security] added more unit tests
2010-10-22 17:48:58 +02:00
Fabien Potencier
82f8ab839f
[Security] added some unit tests (WIP)
2010-10-21 18:14:32 +02:00