CodeExplorer
You are a developer and looking for Shopware projects?
Apply Now!
decide example
public function decide(TokenInterface $token, array $attributes, mixed $object = null, bool $allowMultipleAttributes = false): bool
{
$currentDecisionLog = [
'attributes' => $attributes,
'object' => $object,
'voterDetails' => [],
];
$this->currentLog[] = &$currentDecisionLog;
$result = $this->manager->decide($token, $attributes, $object, $allowMultipleAttributes);
$currentDecisionLog['result'] = $result;
$this->decisionLog[] = array_pop($this->currentLog); // Using a stack since decide can be called by voters
return $result;
}
/** * Adds voter vote and class to the voter details. * * @param array $attributes attributes used for the vote * @param int $vote vote of the voter */
{
$currentDecisionLog = [
'attributes' => $attributes,
'object' => $object,
'voterDetails' => [],
];
$this->currentLog[] = &$currentDecisionLog;
$result = $this->manager->decide($token, $attributes, $object, $allowMultipleAttributes);
$currentDecisionLog['result'] = $result;
$this->decisionLog[] = array_pop($this->currentLog); // Using a stack since decide can be called by voters
return $result;
}
/** * Adds voter vote and class to the voter details. * * @param array $attributes attributes used for the vote * @param int $vote vote of the voter */
return true;
}
}
return false;
}
};
$manager = new AccessDecisionManager($voters, $strategy);
$this->assertTrue($manager->decide($token, ['ROLE_FOO']));
}
public function testCacheableVoters()
{
$token = $this->createMock(TokenInterface::class);
$voter = $this->getMockBuilder(CacheableVoterInterface::class)->getMockForAbstractClass();
$voter
->expects($this->once())
->method('supportsAttribute')
->with('foo')
->willReturn(true);
}
}
return false;
}
};
$manager = new AccessDecisionManager($voters, $strategy);
$this->assertTrue($manager->decide($token, ['ROLE_FOO']));
}
public function testCacheableVoters()
{
$token = $this->createMock(TokenInterface::class);
$voter = $this->getMockBuilder(CacheableVoterInterface::class)->getMockForAbstractClass();
$voter
->expects($this->once())
->method('supportsAttribute')
->with('foo')
->willReturn(true);
$attributes = $request->attributes->get('_access_control_attributes');
$request->attributes->remove('_access_control_attributes');
if (!$attributes || (
[AuthenticatedVoter::PUBLIC_ACCESS] === $attributes && $event instanceof LazyResponseEvent
)) {
return;
}
$token = $this->tokenStorage->getToken() ?? new NullToken();
if (!$this->accessDecisionManager->decide($token, $attributes, $request, true)) {
throw $this->createAccessDeniedException($request, $attributes);
}
}
private function createAccessDeniedException(Request $request, array $attributes): AccessDeniedException
{
$exception = new AccessDeniedException();
$exception->setAttributes($attributes);
$exception->setSubject($request);
return $exception;
}
$request->attributes->remove('_access_control_attributes');
if (!$attributes || (
[AuthenticatedVoter::PUBLIC_ACCESS] === $attributes && $event instanceof LazyResponseEvent
)) {
return;
}
$token = $this->tokenStorage->getToken() ?? new NullToken();
if (!$this->accessDecisionManager->decide($token, $attributes, $request, true)) {
throw $this->createAccessDeniedException($request, $attributes);
}
}
private function createAccessDeniedException(Request $request, array $attributes): AccessDeniedException
{
$exception = new AccessDeniedException();
$exception->setAttributes($attributes);
$exception->setSubject($request);
return $exception;
}
try {
$this->provider->loadUserByIdentifier($nonExistentUsername);
} catch (\Exception) {
}
} catch (AuthenticationException $e) {
$this->provider->loadUserByIdentifier($currentUsername);
throw $e;
}
if (false === $this->accessDecisionManager->decide($token, [$this->role], $user)) {
$exception = new AccessDeniedException();
$exception->setAttributes($this->role);
throw $exception;
}
$this->logger?->info('Attempting to switch to user.', ['username' => $username]);
$this->userChecker->checkPostAuth($user);
$roles = $user->getRoles();
$this->provider->loadUserByIdentifier($nonExistentUsername);
} catch (\Exception) {
}
} catch (AuthenticationException $e) {
$this->provider->loadUserByIdentifier($currentUsername);
throw $e;
}
if (false === $this->accessDecisionManager->decide($token, [$this->role], $user)) {
$exception = new AccessDeniedException();
$exception->setAttributes($this->role);
throw $exception;
}
$this->logger?->info('Attempting to switch to user.', ['username' => $username]);
$this->userChecker->checkPostAuth($user);
$roles = $user->getRoles();
->with($token, $attributes, $object)
->willReturnCallback(function D$token, $attributes, $object) use ($voterVotes, $adm, $result) {
foreach ($voterVotes as $voterVote) {
[$voter, $vote] = $voterVote;
$adm->addVoterVote($voter, $attributes, $vote);
}
return $result;
})
;
$adm->decide($token, $attributes, $object);
$this->assertEquals($expectedLog, $adm->getDecisionLog());
}
public static function provideObjectsAndLogs(): \Generator
{
$voter1 = new DummyVoter();
$voter2 = new DummyVoter();
yield [
[[
->willReturnCallback(function D$token, $attributes, $object) use ($voterVotes, $adm, $result) {
foreach ($voterVotes as $voterVote) {
[$voter, $vote] = $voterVote;
$adm->addVoterVote($voter, $attributes, $vote);
}
return $result;
})
;
$adm->decide($token, $attributes, $object);
$this->assertEquals($expectedLog, $adm->getDecisionLog());
}
public static function provideObjectsAndLogs(): \Generator
{
$voter1 = new DummyVoter();
$voter2 = new DummyVoter();
yield [
[[
/** * @dataProvider provideStrategyTests * * @param VoterInterface[] $voters */
final public function testDecide(AccessDecisionStrategyInterface $strategy, array $voters, bool $expected)
{
$token = $this->createMock(TokenInterface::class);
$manager = new AccessDecisionManager($voters, $strategy);
$this->assertSame($expected, $manager->decide($token, ['ROLE_FOO']));
}
/** * @return iterable<array{AccessDecisionStrategyInterface, VoterInterface[], bool}> */
abstract public static function provideStrategyTests(): iterable;
/** * @return VoterInterface[] */
final protected static function getVoters(int $grants, int $denies, int $abstains): array
{
$this->accessDecisionManager = $accessDecisionManager;
}
final public function isGranted(mixed $attribute, mixed $subject = null): bool
{
$token = $this->tokenStorage->getToken();
if (!$token || !$token->getUser()) {
$token = new NullToken();
}
return $this->accessDecisionManager->decide($token, [$attribute], $subject);
}
}
}
final public function isGranted(mixed $attribute, mixed $subject = null): bool
{
$token = $this->tokenStorage->getToken();
if (!$token || !$token->getUser()) {
$token = new NullToken();
}
return $this->accessDecisionManager->decide($token, [$attribute], $subject);
}
}
/**
* @param bool $allowMultipleAttributes Whether to allow passing multiple values to the $attributes array
*/
public function decide(TokenInterface $token, array $attributes, mixed $object = null, bool $allowMultipleAttributes = false): bool
{
// Special case for AccessListener, do not remove the right side of the condition before 6.0 if (\count($attributes) > 1 && !$allowMultipleAttributes) {
throw new InvalidArgumentException(sprintf('Passing more than one Security attribute to "%s()" is not supported.', __METHOD__));
}
return $this->strategy->decide(
$this->collectResults($token, $attributes, $object)
);
}
/** * @return \Traversable<int, int> */
private function collectResults(TokenInterface $token, array $attributes, mixed $object): \Traversable
{
foreach ($this->getVoters($attributes, $object) as $voter) {
$result = $voter->vote($token, $object, $attributes);
public function decide(TokenInterface $token, array $attributes, mixed $object = null, bool $allowMultipleAttributes = false): bool
{
// Special case for AccessListener, do not remove the right side of the condition before 6.0 if (\count($attributes) > 1 && !$allowMultipleAttributes) {
throw new InvalidArgumentException(sprintf('Passing more than one Security attribute to "%s()" is not supported.', __METHOD__));
}
return $this->strategy->decide(
$this->collectResults($token, $attributes, $object)
);
}
/** * @return \Traversable<int, int> */
private function collectResults(TokenInterface $token, array $attributes, mixed $object): \Traversable
{
foreach ($this->getVoters($attributes, $object) as $voter) {
$result = $voter->vote($token, $object, $attributes);