EZP-28926: Add a legacy security voter decorator #146

emodric · 2018-03-22T09:06:54Z

This allows checking for legacy modules/functions before exceptions are thrown.

It only rethrows the exception if for some reason this voter votes with ACCESS_ABSTAIN.

Needed for legacy permission checking after ezsystems/ezpublish-kernel#2273.

…y modules/functions before exceptions are thrown

andrerom · 2018-03-22T10:13:16Z

Needed for legacy permission checking after

You mean netgen legacy admin or something? legacy extensions tend to use legacy api for this right? so not really affected or?

emodric · 2018-03-22T10:22:47Z

Netgen legacy admin, yes, but really any custom code from the new stack checking for legacy permissions.

We have some pages implemented in the frontend too which reuse pieces of legacy, while checking for legacy permissions too with permissions resolver.

kmadejski

+1 besides missing PHPDocs.

kmadejski · 2018-03-26T09:04:10Z

mvc/Security/Voter/VoterDecorator.php

+        return true;
+    }
+
+    public function vote(TokenInterface $token, $object, array $attributes)


Would be nice to see PHPDocs here.

emodric · 2018-03-26T09:18:13Z

@kmadejski Added PHPDoc 👍

emodric · 2018-03-27T11:13:19Z

@andrerom OK to merge and tag?

Add a legacy security voter decorator which allows checking for legac…

3463bc4

…y modules/functions before exceptions are thrown

emodric requested a review from andrerom March 22, 2018 09:07

andrerom approved these changes Mar 22, 2018

View reviewed changes

andrerom requested a review from kmadejski March 22, 2018 12:21

kmadejski approved these changes Mar 26, 2018

View reviewed changes

Add PHPDoc

61eca51

Decorator voters do not need tags

da6c240

emodric merged commit cf1cfc5 into master Mar 29, 2018

emodric deleted the security_voter branch March 29, 2018 08:34

Provide feedback