aab0bf7e2c
Commits -------eae6a77fixed wrong cased0a175bfixes #1659f300edefixes several bugsa4f05acadded some tests Discussion ---------- Http util fixes Fixes several bugs in the http utils. Please don't add anymore features without sufficient tests. Especially for the Security\Http namespace, regressions are very likely otherwise. --------------------------------------------------------------------------- by fabpot at 2011/07/19 22:37:26 -0700 Tests do not pass for me: There were 2 errors: 1) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testLoginLogoutProcedure with data set #0 ('en') InvalidArgumentException: The current node list is empty. .../src/Symfony/Component/DomCrawler/Crawler.php:604 .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:16 2) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testLoginLogoutProcedure with data set #1 ('de') InvalidArgumentException: The current node list is empty. .../src/Symfony/Component/DomCrawler/Crawler.php:604 .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:16 -- There were 4 failures: 1) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testAccessRestrictedResource with data set #0 ('en') Failed asserting that two strings are equal. --- Expected +++ Actual @@ @@ -http://localhost/en/login +http://localhost/login .../src/Symfony/Bundle/Securitybundle/Tests/Functional/WebTestCase.php:22 .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:38 2) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testAccessRestrictedResource with data set #1 ('de') Failed asserting that two strings are equal. --- Expected +++ Actual @@ @@ -http://localhost/de/login +http://localhost/login .../src/Symfony/Bundle/Securitybundle/Tests/Functional/WebTestCase.php:22 .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:38 3) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testAccessRestrictedResourceWithForward with data set #0 ('en') HTTP/1.0 302 Found Cache-Control: no-cache Content-Length: 299 Content-Type: text/html; charset=UTF-8 Date: Wed, 20 Jul 2011 05:36:27 GMT Location: http://localhost/login Set-Cookie: PHPSESSID=11c9c6a7e7620e13bddef223a5ba46d9; path=/; domain= <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="refresh" content="1;url=http://localhost/login" /> </head> <body> Redirecting to <a href="http://localhost/login">http://localhost/login</a>. </body> </html> Failed asserting that <integer:0> matches expected <integer:1>. .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:50 4) Symfony\Bundle\SecurityBundle\Tests\Functional\LocalizedRoutesAsPathTest::testAccessRestrictedResourceWithForward with data set #1 ('de') HTTP/1.0 302 Found Cache-Control: no-cache Content-Length: 299 Content-Type: text/html; charset=UTF-8 Date: Wed, 20 Jul 2011 05:36:28 GMT Location: http://localhost/login Set-Cookie: PHPSESSID=2bbe63786a088471ade3717917f4ba4f; path=/; domain= <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="refresh" content="1;url=http://localhost/login" /> </head> <body> Redirecting to <a href="http://localhost/login">http://localhost/login</a>. </body> </html> Failed asserting that <integer:0> matches expected <integer:1>. .../src/Symfony/Bundle/SecurityBundle/Tests/Functional/LocalizedRoutesAsPathTest.php:50 --------------------------------------------------------------------------- by schmittjoh at 2011/07/19 23:47:29 -0700 I fixed a wrong case, but I couldn't reproduce the other errors (tested on Ubuntu). My guess is that the temporary directory on your machine couldn't be deleted for some reason, and the test runs with the configuration of some of the previous tests. --------------------------------------------------------------------------- by fabpot at 2011/07/20 00:28:41 -0700 That does not make any difference for me. For instance, in `LocalizedRoutesAsPathTest::testLoginLogoutProcedure()`, the first request to `'/'.$locale.'/login'` returns the following Response: <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="refresh" content="1;url=http://localhost/login" /> </head> <body> Redirecting to <a href="http://localhost/login">http://localhost/login</a>. </body> </html> --------------------------------------------------------------------------- by schmittjoh at 2011/07/20 00:31:34 -0700 That's weird, did you make sure that the temporary directory does not exist? ``rm -Rf /tmp/StandardFormLogin/`` On Wed, Jul 20, 2011 at 9:28 AM, fabpot < reply@reply.github.com>wrote: > That does not make any difference for me. For instance, in > `LocalizedRoutesAsPathTest::testLoginLogoutProcedure()`, the first request > to `'/'.$locale.'/login'` returns the following Response: > > <html> > <head> > <meta http-equiv="Content-Type" content="text/html; > charset=utf-8" /> > <meta http-equiv="refresh" content="1;url= > http://localhost/login" /> > </head> > <body> > Redirecting to <a href="http://localhost/login"> > http://localhost/login</a>. > </body> > </html> > > -- > Reply to this email directly or view it on GitHub: > https://github.com/symfony/symfony/pull/1739#issuecomment-1613504 > --------------------------------------------------------------------------- by fabpot at 2011/07/20 00:33:40 -0700 Yes, I've just checked and the directory does not exist. --------------------------------------------------------------------------- by schmittjoh at 2011/07/20 00:39:55 -0700 Sorry, I can't reproduce it on Ubuntu and unless someone wants to sponsor me a Mac, there is not much I can do.
178 lines
4.5 KiB
PHP
178 lines
4.5 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of the Symfony package.
|
|
*
|
|
* (c) Fabien Potencier <fabien@symfony.com>
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Symfony\Component\HttpFoundation;
|
|
|
|
/**
|
|
* RequestMatcher compares a pre-defined set of checks against a Request instance.
|
|
*
|
|
* @author Fabien Potencier <fabien@symfony.com>
|
|
*
|
|
* @api
|
|
*/
|
|
class RequestMatcher implements RequestMatcherInterface
|
|
{
|
|
private $path;
|
|
private $host;
|
|
private $methods;
|
|
private $ip;
|
|
private $attributes;
|
|
|
|
public function __construct($path = null, $host = null, $methods = null, $ip = null, array $attributes = array())
|
|
{
|
|
$this->path = $path;
|
|
$this->host = $host;
|
|
$this->methods = $methods;
|
|
$this->ip = $ip;
|
|
$this->attributes = $attributes;
|
|
}
|
|
|
|
/**
|
|
* Adds a check for the URL host name.
|
|
*
|
|
* @param string $regexp A Regexp
|
|
*/
|
|
public function matchHost($regexp)
|
|
{
|
|
$this->host = $regexp;
|
|
}
|
|
|
|
/**
|
|
* Adds a check for the URL path info.
|
|
*
|
|
* @param string $regexp A Regexp
|
|
*/
|
|
public function matchPath($regexp)
|
|
{
|
|
$this->path = $regexp;
|
|
}
|
|
|
|
/**
|
|
* Adds a check for the client IP.
|
|
*
|
|
* @param string $ip A specific IP address or a range specified using IP/netmask like 192.168.1.0/24
|
|
*/
|
|
public function matchIp($ip)
|
|
{
|
|
$this->ip = $ip;
|
|
}
|
|
|
|
/**
|
|
* Adds a check for the HTTP method.
|
|
*
|
|
* @param string|array $method An HTTP method or an array of HTTP methods
|
|
*/
|
|
public function matchMethod($method)
|
|
{
|
|
$this->methods = array_map('strtoupper', is_array($method) ? $method : array($method));
|
|
}
|
|
|
|
/**
|
|
* Adds a check for request attribute.
|
|
*
|
|
* @param string $key The request attribute name
|
|
* @param string $regexp A Regexp
|
|
*/
|
|
public function matchAttribute($key, $regexp)
|
|
{
|
|
$this->attributes[$key] = $regexp;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*
|
|
* @api
|
|
*/
|
|
public function matches(Request $request)
|
|
{
|
|
if (null !== $this->methods && !in_array($request->getMethod(), $this->methods)) {
|
|
return false;
|
|
}
|
|
|
|
foreach ($this->attributes as $key => $pattern) {
|
|
if (!preg_match('#'.str_replace('#', '\\#', $pattern).'#', $request->attributes->get($key))) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
if (null !== $this->path) {
|
|
$path = str_replace('#', '\\#', $this->path);
|
|
|
|
if (!preg_match('#'.$path.'#', $request->getPathInfo())) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
if (null !== $this->host && !preg_match('#'.str_replace('#', '\\#', $this->host).'#', $request->getHost())) {
|
|
return false;
|
|
}
|
|
|
|
if (null !== $this->ip && !$this->checkIp($request->getClientIp(), $this->ip)) {
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
protected function checkIp($requestIp, $ip)
|
|
{
|
|
// IPv6 address
|
|
if (false !== strpos($requestIp, ':')) {
|
|
return $this->checkIp6($requestIp, $ip);
|
|
} else {
|
|
return $this->checkIp4($requestIp, $ip);
|
|
}
|
|
}
|
|
|
|
protected function checkIp4($requestIp, $ip)
|
|
{
|
|
if (false !== strpos($ip, '/')) {
|
|
list($address, $netmask) = explode('/', $ip);
|
|
|
|
if ($netmask < 1 || $netmask > 32) {
|
|
return false;
|
|
}
|
|
} else {
|
|
$address = $ip;
|
|
$netmask = 32;
|
|
}
|
|
|
|
return 0 === substr_compare(sprintf('%032b', ip2long($requestIp)), sprintf('%032b', ip2long($address)), 0, $netmask);
|
|
}
|
|
|
|
/**
|
|
* @author David Soria Parra <dsp at php dot net>
|
|
* @see https://github.com/dsp/v6tools
|
|
*/
|
|
protected function checkIp6($requestIp, $ip)
|
|
{
|
|
if (!defined('AF_INET6')) {
|
|
throw new \RuntimeException('Unable to check Ipv6. Check that PHP was not compiled with option "disable-ipv6".');
|
|
}
|
|
|
|
list($address, $netmask) = explode('/', $ip);
|
|
|
|
$bytes_addr = unpack("n*", inet_pton($address));
|
|
$bytes_test = unpack("n*", inet_pton($requestIp));
|
|
|
|
for ($i = 1, $ceil = ceil($netmask / 16); $i <= $ceil; $i++) {
|
|
$left = $netmask - 16 * ($i-1);
|
|
$left = ($left <= 16) ?: 16;
|
|
$mask = ~(0xffff >> $left) & 0xffff;
|
|
if (($bytes_addr[$i] & $mask) != ($bytes_test[$i] & $mask)) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
return true;
|
|
}
|
|
}
|