drop the ability to configure a signer with the IsSignatureValid attribute

Author: xabbuh

src/Symfony/Bundle/FrameworkBundle/CHANGELOG.md

@@ -11,7 +11,6 @@ CHANGELOG
  * Add `assertEmailAddressNotContains()` to the `MailerAssertionsTrait`
  * Add `framework.type_info.aliases` option
  * Add `KernelBrowser::getSession()`
- * Add autoconfiguration tag `kernel.uri_signer` to `Symfony\Component\HttpFoundation\UriSigner`
  * Add support for configuring workflow places with glob patterns matching consts/backed enums
 
 7.3

src/Symfony/Bundle/FrameworkBundle/DependencyInjection/Compiler/UnusedTagsPass.php

@@ -61,7 +61,6 @@ class UnusedTagsPass implements CompilerPassInterface
         'kernel.fragment_renderer',
         'kernel.locale_aware',
         'kernel.reset',
-        'kernel.uri_signer',
         'ldap',
         'mailer.transport_factory',
         'messenger.bus',

src/Symfony/Bundle/FrameworkBundle/DependencyInjection/FrameworkExtension.php

@@ -101,7 +101,6 @@
 use Symfony\Component\HttpClient\ThrottlingHttpClient;
 use Symfony\Component\HttpClient\UriTemplateHttpClient;
 use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\UriSigner;
 use Symfony\Component\HttpKernel\Attribute\AsController;
 use Symfony\Component\HttpKernel\Attribute\AsTargetedValueResolver;
 use Symfony\Component\HttpKernel\CacheClearer\CacheClearerInterface;
@@ -767,8 +766,6 @@ public function load(array $configs, ContainerBuilder $container): void
             ->addTag('mime.mime_type_guesser');
         $container->registerForAutoconfiguration(LoggerAwareInterface::class)
             ->addMethodCall('setLogger', [new Reference('logger')]);
-        $container->registerForAutoconfiguration(UriSigner::class)
-            ->addTag('kernel.uri_signer');
 
         $container->registerAttributeForAutoconfiguration(AsEventListener::class, static function (ChildDefinition $definition, AsEventListener $attribute, \ReflectionClass|\ReflectionMethod $reflector) {
             $tagAttributes = get_object_vars($attribute);

src/Symfony/Bundle/FrameworkBundle/Resources/config/web.php

@@ -152,7 +152,6 @@
         ->set('controller.is_signature_valid_attribute_listener', IsSignatureValidAttributeListener::class)
             ->args([
                 service('uri_signer'),
-                tagged_locator('kernel.uri_signer'),
             ])
             ->tag('kernel.event_subscriber')
 

src/Symfony/Component/HttpKernel/Attribute/IsSignatureValid.php

@@ -29,17 +29,13 @@ final class IsSignatureValid
 {
     /** @var string[] */
     public readonly array $methods;
-    public readonly ?string $signer;
 
     /**
      * @param string[]|string $methods HTTP methods that require signature validation. An empty array means that no method filtering is done
-     * @param string          $signer  The ID of the UriSigner service to use for signature validation. Defaults to 'uri_signer'
      */
     public function __construct(
         array|string $methods = [],
-        ?string $signer = null,
     ) {
         $this->methods = (array) $methods;
-        $this->signer = $signer;
     }
 }

src/Symfony/Component/HttpKernel/EventListener/IsSignatureValidAttributeListener.php

@@ -11,7 +11,6 @@
 
 namespace Symfony\Component\HttpKernel\EventListener;
 
-use Psr\Container\ContainerInterface;
 use Symfony\Component\EventDispatcher\EventSubscriberInterface;
 use Symfony\Component\HttpFoundation\UriSigner;
 use Symfony\Component\HttpKernel\Attribute\IsSignatureValid;
@@ -27,7 +26,6 @@ class IsSignatureValidAttributeListener implements EventSubscriberInterface
 {
     public function __construct(
         private readonly UriSigner $uriSigner,
-        private readonly ContainerInterface $container,
     ) {
     }
 
@@ -44,17 +42,7 @@ public function onKernelControllerArguments(ControllerArgumentsEvent $event): vo
                 continue;
             }
 
-            if (null === $attribute->signer) {
-                $this->uriSigner->verify($request);
-                continue;
-            }
-
-            $signer = $this->container->get($attribute->signer);
-            if (!$signer instanceof UriSigner) {
-                throw new \LogicException(\sprintf('The service "%s" is not an instance of "%s".', $attribute->signer, UriSigner::class));
-            }
-
-            $signer->verify($request);
+            $this->uriSigner->verify($request);
         }
     }
 

src/Symfony/Component/HttpKernel/Tests/EventListener/IsSignatureValidAttributeListenerTest.php

@@ -11,20 +11,16 @@
 
 namespace Symfony\Component\HttpKernel\Tests\EventListener;
 
-use PHPUnit\Framework\Attributes\RequiresMethod;
 use PHPUnit\Framework\TestCase;
-use Psr\Container\ContainerInterface;
 use Symfony\Component\HttpFoundation\Exception\UnsignedUriException;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\UriSigner;
 use Symfony\Component\HttpKernel\Event\ControllerArgumentsEvent;
 use Symfony\Component\HttpKernel\EventListener\IsSignatureValidAttributeListener;
 use Symfony\Component\HttpKernel\HttpKernelInterface;
-use Symfony\Component\HttpKernel\Tests\Fixtures\ExtendedSigner;
 use Symfony\Component\HttpKernel\Tests\Fixtures\IsSignatureValidAttributeController;
 use Symfony\Component\HttpKernel\Tests\Fixtures\IsSignatureValidAttributeMethodsController;
 
-#[RequiresMethod(UriSigner::class, 'verify')]
 class IsSignatureValidAttributeListenerTest extends TestCase
 {
     public function testInvokableControllerWithValidSignature()
@@ -34,8 +30,6 @@ public function testInvokableControllerWithValidSignature()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->once())->method('verify')->with($request);
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -45,16 +39,15 @@ public function testInvokableControllerWithValidSignature()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
     public function testNoAttributeSkipsValidation()
     {
         $kernel = $this->createMock(HttpKernelInterface::class);
         $signer = $this->createMock(UriSigner::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
+        $signer->expects($this->never())->method('verify');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -64,7 +57,7 @@ public function testNoAttributeSkipsValidation()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
@@ -74,8 +67,6 @@ public function testDefaultCheckRequestSucceeds()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->once())->method('verify')->with($request);
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -85,7 +76,7 @@ public function testDefaultCheckRequestSucceeds()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
@@ -95,8 +86,6 @@ public function testCheckRequestFailsThrowsHttpException()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->once())->method('verify')->willThrowException(new UnsignedUriException());
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -106,7 +95,7 @@ public function testCheckRequestFailsThrowsHttpException()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
 
         $this->expectException(UnsignedUriException::class);
         $listener->onKernelControllerArguments($event);
@@ -119,8 +108,6 @@ public function testMultipleAttributesAllValid()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->exactly(2))->method('verify')->with($request);
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -130,7 +117,7 @@ public function testMultipleAttributesAllValid()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
@@ -141,8 +128,6 @@ public function testValidationWithStringMethod()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->once())->method('verify')->with($request);
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -152,7 +137,7 @@ public function testValidationWithStringMethod()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
@@ -163,8 +148,6 @@ public function testValidationWithArrayMethods()
         $signer = $this->createMock(UriSigner::class);
         $signer->expects($this->once())->method('verify')->with($request);
         $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -174,7 +157,7 @@ public function testValidationWithArrayMethods()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 
@@ -184,8 +167,7 @@ public function testValidationSkippedForNonMatchingMethod()
 
         $kernel = $this->createMock(HttpKernelInterface::class);
         $signer = $this->createMock(UriSigner::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->never())->method('get');
+        $signer->expects($this->never())->method('verify');
 
         $event = new ControllerArgumentsEvent(
             $kernel,
@@ -195,51 +177,7 @@ public function testValidationSkippedForNonMatchingMethod()
             null
         );
 
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
-        $listener->onKernelControllerArguments($event);
-    }
-
-    public function testValidationWithSigner()
-    {
-        $request = new Request();
-        $signer = $this->createMock(UriSigner::class);
-        $customSigner = $this->createMock(UriSigner::class);
-        $customSigner->expects($this->once())->method('verify')->with($request);
-        $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->once())->method('get')->with('app.test.signer')->willReturn($customSigner);
-
-        $event = new ControllerArgumentsEvent(
-            $kernel,
-            [new IsSignatureValidAttributeMethodsController(), 'withCustomSigner'],
-            [],
-            $request,
-            null
-        );
-
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
-        $listener->onKernelControllerArguments($event);
-    }
-
-    public function testValidationWithExtendedSigner()
-    {
-        $request = new Request();
-        $signer = $this->createMock(UriSigner::class);
-        $extendedSigner = $this->createMock(ExtendedSigner::class);
-        $extendedSigner->expects($this->once())->method('verify')->with($request);
-        $kernel = $this->createMock(HttpKernelInterface::class);
-        $container = $this->createMock(ContainerInterface::class);
-        $container->expects($this->once())->method('get')->with('app.test.extended_signer')->willReturn($extendedSigner);
-
-        $event = new ControllerArgumentsEvent(
-            $kernel,
-            [new IsSignatureValidAttributeMethodsController(), 'withCustomExtendedSigner'],
-            [],
-            $request,
-            null
-        );
-
-        $listener = new IsSignatureValidAttributeListener($signer, $container);
+        $listener = new IsSignatureValidAttributeListener($signer);
         $listener->onKernelControllerArguments($event);
     }
 }

src/Symfony/Component/HttpKernel/Tests/Fixtures/ExtendedSigner.php

@@ -39,14 +39,4 @@ public function withPostOnly()
     public function withGetAndPost()
     {
     }
-
-    #[IsSignatureValid(signer: 'app.test.signer')]
-    public function withCustomSigner()
-    {
-    }
-
-    #[IsSignatureValid(signer: 'app.test.extended_signer')]
-    public function withCustomExtendedSigner()
-    {
-    }
 }