Merge pull request #2900 from Coffreo/fix_deprecation

dunglas · web-flow · commit 1b15c278e44e · 2019-07-03T13:37:38.000+02:00
Replace has_role() by is_granted()
diff --git a/tests/Annotation/ApiResourceTest.php b/tests/Annotation/ApiResourceTest.php
@@ -27,7 +27,7 @@ class ApiResourceTest extends TestCase
     public function testConstruct()
     {
         $resource = new ApiResource([
-            'accessControl' => 'has_role("ROLE_FOO")',
+            'accessControl' => 'is_granted("ROLE_FOO")',
             'accessControlMessage' => 'You are not foo.',
             'attributes' => ['foo' => 'bar', 'validation_groups' => ['baz', 'qux'], 'cache_headers' => ['max_age' => 0, 'shared_max_age' => 0]],
             'collectionOperations' => ['bar' => ['foo']],
@@ -71,7 +71,7 @@ public function testConstruct()
         $this->assertSame([], $resource->subresourceOperations);
         $this->assertSame(['query' => ['normalization_context' => ['groups' => ['foo', 'bar']]]], $resource->graphql);
         $this->assertEquals([
-            'access_control' => 'has_role("ROLE_FOO")',
+            'access_control' => 'is_granted("ROLE_FOO")',
             'access_control_message' => 'You are not foo.',
             'denormalization_context' => ['groups' => ['foo']],
             'fetch_partial' => true,
@@ -118,7 +118,7 @@ public function testApiResourceAnnotation()
         $this->assertEquals([
             'foo' => 'bar',
             'route_prefix' => '/whatever',
-            'access_control' => "has_role('ROLE_FOO')",
+            'access_control' => "is_granted('ROLE_FOO')",
             'access_control_message' => 'You are not foo.',
             'cache_headers' => ['max_age' => 0, 'shared_max_age' => 0],
         ], $resource->attributes);
diff --git a/tests/Fixtures/AnnotatedClass.php b/tests/Fixtures/AnnotatedClass.php
@@ -25,7 +25,7 @@
  *     graphql={"query"={"normalization_context"={"groups"={"foo", "bar"}}}},
  *     attributes={"foo"="bar", "route_prefix"="/whatever", "cache_headers"={"max_age"=0, "shared_max_age"=0}},
  *     routePrefix="/foo",
- *     accessControl="has_role('ROLE_FOO')",
+ *     accessControl="is_granted('ROLE_FOO')",
  *     accessControlMessage="You are not foo."
  * )
  *
diff --git a/tests/Fixtures/TestBundle/Document/SecuredDummy.php b/tests/Fixtures/TestBundle/Document/SecuredDummy.php
@@ -24,20 +24,20 @@
  * @author Alan Poulain <contact@alanpoulain.eu>
  *
  * @ApiResource(
- *     attributes={"access_control"="has_role('ROLE_USER')"},
+ *     attributes={"access_control"="is_granted('ROLE_USER')"},
  *     collectionOperations={
  *         "get",
- *         "post"={"access_control"="has_role('ROLE_ADMIN')"}
+ *         "post"={"access_control"="is_granted('ROLE_ADMIN')"}
  *     },
  *     itemOperations={
- *         "get"={"access_control"="has_role('ROLE_USER') and object.getOwner() == user"},
- *         "put"={"access_control"="has_role('ROLE_USER') and previous_object.getOwner() == user"},
+ *         "get"={"access_control"="is_granted('ROLE_USER') and object.getOwner() == user"},
+ *         "put"={"access_control"="is_granted('ROLE_USER') and previous_object.getOwner() == user"},
  *     },
  *     graphql={
- *         "query"={"access_control"="has_role('ROLE_USER') and object.getOwner() == user"},
+ *         "query"={"access_control"="is_granted('ROLE_USER') and object.getOwner() == user"},
  *         "delete"={},
- *         "update"={"access_control"="has_role('ROLE_USER') and previous_object.getOwner() ==  user"},
- *         "create"={"access_control"="has_role('ROLE_ADMIN')", "access_control_message"="Only admins can create a secured dummy."}
+ *         "update"={"access_control"="is_granted('ROLE_USER') and previous_object.getOwner() ==  user"},
+ *         "create"={"access_control"="is_granted('ROLE_ADMIN')", "access_control_message"="Only admins can create a secured dummy."}
  *     }
  * )
  * @ODM\Document
diff --git a/tests/Fixtures/TestBundle/Entity/SecuredDummy.php b/tests/Fixtures/TestBundle/Entity/SecuredDummy.php
@@ -23,20 +23,20 @@
  * @author Kévin Dunglas <dunglas@gmail.com>
  *
  * @ApiResource(
- *     attributes={"access_control"="has_role('ROLE_USER')"},
+ *     attributes={"access_control"="is_granted('ROLE_USER')"},
  *     collectionOperations={
  *         "get",
- *         "post"={"access_control"="has_role('ROLE_ADMIN')"}
+ *         "post"={"access_control"="is_granted('ROLE_ADMIN')"}
  *     },
  *     itemOperations={
- *         "get"={"access_control"="has_role('ROLE_USER') and object.getOwner() == user"},
- *         "put"={"access_control"="has_role('ROLE_USER') and previous_object.getOwner() ==  user"},
+ *         "get"={"access_control"="is_granted('ROLE_USER') and object.getOwner() == user"},
+ *         "put"={"access_control"="is_granted('ROLE_USER') and previous_object.getOwner() ==  user"},
  *     },
  *     graphql={
- *         "query"={"access_control"="has_role('ROLE_USER') and object.getOwner() == user"},
+ *         "query"={"access_control"="is_granted('ROLE_USER') and object.getOwner() == user"},
  *         "delete"={},
- *         "update"={"access_control"="has_role('ROLE_USER') and previous_object.getOwner() ==  user"},
- *         "create"={"access_control"="has_role('ROLE_ADMIN')", "access_control_message"="Only admins can create a secured dummy."}
+ *         "update"={"access_control"="is_granted('ROLE_USER') and previous_object.getOwner() ==  user"},
+ *         "create"={"access_control"="is_granted('ROLE_ADMIN')", "access_control_message"="Only admins can create a secured dummy."}
  *     }
  * )
  * @ORM\Entity
diff --git a/tests/Security/EventListener/DenyAccessListenerTest.php b/tests/Security/EventListener/DenyAccessListenerTest.php
@@ -78,13 +78,13 @@ public function testIsGranted()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
 
         $resourceAccessCheckerProphecy = $this->prophesize(ResourceAccessCheckerInterface::class);
-        $resourceAccessCheckerProphecy->isGranted('Foo', 'has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn(true)->shouldBeCalled();
+        $resourceAccessCheckerProphecy->isGranted('Foo', 'is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn(true)->shouldBeCalled();
 
         $listener = $this->getListener($resourceMetadataFactoryProphecy->reveal(), $resourceAccessCheckerProphecy->reveal());
         $listener->onKernelRequest($event);
@@ -100,13 +100,13 @@ public function testIsNotGranted()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
 
         $resourceAccessCheckerProphecy = $this->prophesize(ResourceAccessCheckerInterface::class);
-        $resourceAccessCheckerProphecy->isGranted('Foo', 'has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
+        $resourceAccessCheckerProphecy->isGranted('Foo', 'is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
 
         $listener = $this->getListener($resourceMetadataFactoryProphecy->reveal(), $resourceAccessCheckerProphecy->reveal());
         $listener->onKernelRequest($event);
@@ -123,13 +123,13 @@ public function testAccessControlMessage()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")', 'access_control_message' => 'You are not admin.']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")', 'access_control_message' => 'You are not admin.']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
 
         $resourceAccessCheckerProphecy = $this->prophesize(ResourceAccessCheckerInterface::class);
-        $resourceAccessCheckerProphecy->isGranted('Foo', 'has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
+        $resourceAccessCheckerProphecy->isGranted('Foo', 'is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
 
         $listener = $this->getListener($resourceMetadataFactoryProphecy->reveal(), $resourceAccessCheckerProphecy->reveal());
         $listener->onKernelRequest($event);
@@ -147,13 +147,13 @@ public function testIsGrantedLegacy()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
 
         $expressionLanguageProphecy = $this->prophesize(ExpressionLanguage::class);
-        $expressionLanguageProphecy->evaluate('has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn(true)->shouldBeCalled();
+        $expressionLanguageProphecy->evaluate('is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn(true)->shouldBeCalled();
 
         $listener = $this->getLegacyListener($resourceMetadataFactoryProphecy->reveal(), $expressionLanguageProphecy->reveal());
         $listener->onKernelRequest($event);
@@ -172,13 +172,13 @@ public function testIsNotGrantedLegacy()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
 
         $expressionLanguageProphecy = $this->prophesize(ExpressionLanguage::class);
-        $expressionLanguageProphecy->evaluate('has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
+        $expressionLanguageProphecy->evaluate('is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn(false)->shouldBeCalled();
 
         $listener = $this->getLegacyListener($resourceMetadataFactoryProphecy->reveal(), $expressionLanguageProphecy->reveal());
         $listener->onKernelRequest($event);
@@ -197,7 +197,7 @@ public function testSecurityComponentNotAvailable()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
@@ -219,7 +219,7 @@ public function testExpressionLanguageNotInstalled()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
@@ -245,7 +245,7 @@ public function testNotBehindAFirewall()
         $eventProphecy->getRequest()->willReturn($request)->shouldBeCalled();
         $event = $eventProphecy->reveal();
 
-        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'has_role("ROLE_ADMIN")']);
+        $resourceMetadata = new ResourceMetadata(null, null, null, null, null, ['access_control' => 'is_granted("ROLE_ADMIN")']);
 
         $resourceMetadataFactoryProphecy = $this->prophesize(ResourceMetadataFactoryInterface::class);
         $resourceMetadataFactoryProphecy->create('Foo')->willReturn($resourceMetadata)->shouldBeCalled();
diff --git a/tests/Security/ResourceAccessCheckerTest.php b/tests/Security/ResourceAccessCheckerTest.php
@@ -33,7 +33,7 @@ class ResourceAccessCheckerTest extends TestCase
     public function testIsGranted(bool $granted)
     {
         $expressionLanguageProphecy = $this->prophesize(ExpressionLanguage::class);
-        $expressionLanguageProphecy->evaluate('has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn($granted)->shouldBeCalled();
+        $expressionLanguageProphecy->evaluate('is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn($granted)->shouldBeCalled();
 
         $authenticationTrustResolverProphecy = $this->prophesize(AuthenticationTrustResolverInterface::class);
         $tokenStorageProphecy = $this->prophesize(TokenStorageInterface::class);
@@ -46,7 +46,7 @@ public function testIsGranted(bool $granted)
         $tokenStorageProphecy->getToken()->willReturn($tokenProphecy);
 
         $checker = new ResourceAccessChecker($expressionLanguageProphecy->reveal(), $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());
-        $this->assertSame($granted, $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")'));
+        $this->assertSame($granted, $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")'));
     }
 
     public function getGranted(): array
@@ -60,7 +60,7 @@ public function testSecurityComponentNotAvailable()
         $this->expectExceptionMessage('The "symfony/security" library must be installed to use the "access_control" attribute.');
 
         $checker = new ResourceAccessChecker($this->prophesize(ExpressionLanguage::class)->reveal());
-        $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');
+        $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');
     }
 
     public function testExpressionLanguageNotInstalled()
@@ -73,7 +73,7 @@ public function testExpressionLanguageNotInstalled()
         $tokenStorageProphecy->getToken()->willReturn($this->prophesize(TokenInterface::class)->reveal());
 
         $checker = new ResourceAccessChecker(null, $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());
-        $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');
+        $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');
     }
 
     public function testNotBehindAFirewall()
@@ -85,6 +85,6 @@ public function testNotBehindAFirewall()
         $tokenStorageProphecy = $this->prophesize(TokenStorageInterface::class);
 
         $checker = new ResourceAccessChecker(null, $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());
-        $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');
+        $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@`
`25`	`25`	`* graphql={"query"={"normalization_context"={"groups"={"foo", "bar"}}}},`
`26`	`26`	`* attributes={"foo"="bar", "route_prefix"="/whatever", "cache_headers"={"max_age"=0, "shared_max_age"=0}},`
`27`	`27`	`* routePrefix="/foo",`
`28`		`- * accessControl="has_role('ROLE_FOO')",`
	`28`	`+ * accessControl="is_granted('ROLE_FOO')",`
`29`	`29`	`* accessControlMessage="You are not foo."`
`30`	`30`	`* )`
`31`	`31`	`*`
Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@ class ResourceAccessCheckerTest extends TestCase`
`33`	`33`	`public function testIsGranted(bool $granted)`
`34`	`34`	`{`
`35`	`35`	`$expressionLanguageProphecy = $this->prophesize(ExpressionLanguage::class);`
`36`		`- $expressionLanguageProphecy->evaluate('has_role("ROLE_ADMIN")', Argument::type('array'))->willReturn($granted)->shouldBeCalled();`
	`36`	`+ $expressionLanguageProphecy->evaluate('is_granted("ROLE_ADMIN")', Argument::type('array'))->willReturn($granted)->shouldBeCalled();`
`37`	`37`
`38`	`38`	`$authenticationTrustResolverProphecy = $this->prophesize(AuthenticationTrustResolverInterface::class);`
`39`	`39`	`$tokenStorageProphecy = $this->prophesize(TokenStorageInterface::class);`
`@@ -46,7 +46,7 @@ public function testIsGranted(bool $granted)`
`46`	`46`	`$tokenStorageProphecy->getToken()->willReturn($tokenProphecy);`
`47`	`47`
`48`	`48`	`$checker = new ResourceAccessChecker($expressionLanguageProphecy->reveal(), $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());`
`49`		`- $this->assertSame($granted, $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")'));`
	`49`	`+ $this->assertSame($granted, $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")'));`
`50`	`50`	`}`
`51`	`51`
`52`	`52`	`public function getGranted(): array`
`@@ -60,7 +60,7 @@ public function testSecurityComponentNotAvailable()`
`60`	`60`	`$this->expectExceptionMessage('The "symfony/security" library must be installed to use the "access_control" attribute.');`
`61`	`61`
`62`	`62`	`$checker = new ResourceAccessChecker($this->prophesize(ExpressionLanguage::class)->reveal());`
`63`		`- $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');`
	`63`	`+ $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');`
`64`	`64`	`}`
`65`	`65`
`66`	`66`	`public function testExpressionLanguageNotInstalled()`
`@@ -73,7 +73,7 @@ public function testExpressionLanguageNotInstalled()`
`73`	`73`	`$tokenStorageProphecy->getToken()->willReturn($this->prophesize(TokenInterface::class)->reveal());`
`74`	`74`
`75`	`75`	`$checker = new ResourceAccessChecker(null, $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());`
`76`		`- $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');`
	`76`	`+ $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');`
`77`	`77`	`}`
`78`	`78`
`79`	`79`	`public function testNotBehindAFirewall()`
`@@ -85,6 +85,6 @@ public function testNotBehindAFirewall()`
`85`	`85`	`$tokenStorageProphecy = $this->prophesize(TokenStorageInterface::class);`
`86`	`86`
`87`	`87`	`$checker = new ResourceAccessChecker(null, $authenticationTrustResolverProphecy->reveal(), null, $tokenStorageProphecy->reveal());`
`88`		`- $checker->isGranted(Dummy::class, 'has_role("ROLE_ADMIN")');`
	`88`	`+ $checker->isGranted(Dummy::class, 'is_granted("ROLE_ADMIN")');`
`89`	`89`	`}`
`90`	`90`	`}`