hazza/Phraseanet
1
0
Fork 0
mirror of https://github.com/alchemy-fr/Phraseanet.git synced 2025-10-26 03:13:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add MockedAuthenticatedVoter because at least one voter is needed

Browse Source
This commit is contained in:
Benoît Burnichon
2015-09-21 19:44:28 +02:00
parent 69ac680dc7
commit 3e19a28b5c
2 changed files with 58 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/Alchemy/Phrasea/Authorization/AuthorizationServiceProvider.php
View File

@@ -34,7 +34,7 @@ class AuthorizationServiceProvider implements ServiceProviderInterface
return new AccessDecisionManager($app['phraseanet.voters']); return new AccessDecisionManager($app['phraseanet.voters']);
}); });
$app['phraseanet.voters'] = $app->share(function () { $app['phraseanet.voters'] = $app->share(function () {
return []; return [new MockedAuthenticatedVoter()];
}); });
$app['phraseanet.authorization_checker'] = $app->share(function (PhraseaApplication $app) { $app['phraseanet.authorization_checker'] = $app->share(function (PhraseaApplication $app) {

57
lib/Alchemy/Phrasea/Authorization/MockedAuthenticatedVoter.php Normal file
View File

@@ -0,0 +1,57 @@
<?php
/*
* This file is part of Phraseanet
*
* (c) 2005-2015 Alchemy
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
namespace Alchemy\Phrasea\Authorization;
use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
use Symfony\Component\Security\Core\Authentication\Token\PreAuthenticatedToken;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
class MockedAuthenticatedVoter implements VoterInterface
{
const IS_AUTHENTICATED_FULLY = 'IS_AUTHENTICATED_FULLY';
const IS_AUTHENTICATED_ANONYMOUSLY = 'IS_AUTHENTICATED_ANONYMOUSLY';
public function supportsAttribute($attribute)
{
return null !== $attribute && (self::IS_AUTHENTICATED_FULLY === $attribute || self::IS_AUTHENTICATED_ANONYMOUSLY === $attribute);
}
public function supportsClass($class)
{
return true;
}
public function vote(TokenInterface $token, $object, array $attributes)
{
$result = VoterInterface::ACCESS_ABSTAIN;
foreach ($attributes as $attribute) {
if (!$this->supportsAttribute($attribute)) {
continue;
}
$result = VoterInterface::ACCESS_DENIED;
if (self::IS_AUTHENTICATED_FULLY === $attribute
&& $token instanceof PreAuthenticatedToken
) {
return VoterInterface::ACCESS_GRANTED;
}
if (self::IS_AUTHENTICATED_ANONYMOUSLY === $attribute
&& $token instanceof AnonymousToken
) {
return VoterInterface::ACCESS_GRANTED;
}
}
return $result;
}
}