Merge pull request #224 from symfony-cmf/bug/non-object-to-voter

wouterj · web-flow · commit 2c4018d0ea8b · 2017-01-29T12:29:49.000+01:00
[Voters] Account for subject to not be an object
diff --git a/.travis.yml b/.travis.yml
@@ -16,7 +16,7 @@ cache:
 
 env:
   matrix: SYMFONY_VERSION=2.8.*
-  global: SYMFONY_DEPRECATIONS_HELPER=7
+  global: SYMFONY_DEPRECATIONS_HELPER=weak
 
 matrix:
   include:
diff --git a/PublishWorkflow/Voter/PublishTimePeriodVoter.php b/PublishWorkflow/Voter/PublishTimePeriodVoter.php
@@ -66,16 +66,16 @@ public function supportsClass($class)
     /**
      * {@inheritdoc}
      *
-     * @param PublishTimePeriodReadInterface $object
+     * @param PublishTimePeriodReadInterface $subject
      */
-    public function vote(TokenInterface $token, $object, array $attributes)
+    public function vote(TokenInterface $token, $subject, array $attributes)
     {
-        if (!$this->supportsClass(get_class($object))) {
+        if (!is_object($subject) || !$this->supportsClass(get_class($subject))) {
             return self::ACCESS_ABSTAIN;
         }
 
-        $startDate = $object->getPublishStartDate();
-        $endDate = $object->getPublishEndDate();
+        $startDate = $subject->getPublishStartDate();
+        $endDate = $subject->getPublishEndDate();
 
         $decision = self::ACCESS_GRANTED;
         foreach ($attributes as $attribute) {
diff --git a/PublishWorkflow/Voter/PublishableVoter.php b/PublishWorkflow/Voter/PublishableVoter.php
@@ -44,11 +44,11 @@ public function supportsClass($class)
     /**
      * {@inheritdoc}
      *
-     * @param PublishableReadInterface $object
+     * @param PublishableReadInterface $subject
      */
-    public function vote(TokenInterface $token, $object, array $attributes)
+    public function vote(TokenInterface $token, $subject, array $attributes)
     {
-        if (!$this->supportsClass(get_class($object))) {
+        if (!is_object($subject) || !$this->supportsClass(get_class($subject))) {
             return self::ACCESS_ABSTAIN;
         }
 
@@ -61,7 +61,7 @@ public function vote(TokenInterface $token, $object, array $attributes)
                 $decision = self::ACCESS_ABSTAIN;
                 continue;
             }
-            if (!$object->isPublishable()) {
+            if (!$subject->isPublishable()) {
                 return self::ACCESS_DENIED;
             }
         }
diff --git a/Security/Authorization/Voter/PublishedVoter.php b/Security/Authorization/Voter/PublishedVoter.php
@@ -57,11 +57,11 @@ public function supportsClass($class)
     /**
      * {@inheritdoc}
      *
-     * @param object $object
+     * @param object $subject
      */
-    public function vote(TokenInterface $token, $object, array $attributes)
+    public function vote(TokenInterface $token, $subject, array $attributes)
     {
-        if (!$this->supportsClass(get_class($object))) {
+        if (!is_object($subject) || !$this->supportsClass(get_class($subject))) {
             return self::ACCESS_ABSTAIN;
         }
         foreach ($attributes as $attribute) {
@@ -70,7 +70,7 @@ public function vote(TokenInterface $token, $object, array $attributes)
             }
         }
 
-        if ($this->publishWorkflowChecker->isGranted($attributes, $object)) {
+        if ($this->publishWorkflowChecker->isGranted($attributes, $subject)) {
             return self::ACCESS_GRANTED;
         }
 
diff --git a/Tests/Unit/PublishWorkflow/Voter/PublishTimePeriodVoterTest.php b/Tests/Unit/PublishWorkflow/Voter/PublishTimePeriodVoterTest.php
@@ -132,4 +132,10 @@ public function testUnsupportedClass()
         );
         $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);
     }
+
+    public function testNonClassSubject()
+    {
+        $result = $this->voter->vote($this->token, array(1, 2, 3), array(PublishWorkflowChecker::VIEW_ATTRIBUTE));
+        $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);
+    }
 }
diff --git a/Tests/Unit/PublishWorkflow/Voter/PublishableVoterTest.php b/Tests/Unit/PublishWorkflow/Voter/PublishableVoterTest.php
@@ -100,4 +100,10 @@ public function testUnsupportedClass()
         );
         $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);
     }
+
+    public function testNonClassSubject()
+    {
+        $result = $this->voter->vote($this->token, array(1, 2, 3), array(PublishWorkflowChecker::VIEW_ATTRIBUTE));
+        $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -44,11 +44,11 @@ public function supportsClass($class)`
`44`	`44`	`/**`
`45`	`45`	`* {@inheritdoc}`
`46`	`46`	`*`
`47`		`- * @param PublishableReadInterface $object`
	`47`	`+ * @param PublishableReadInterface $subject`
`48`	`48`	`*/`
`49`		`- public function vote(TokenInterface $token, $object, array $attributes)`
	`49`	`+ public function vote(TokenInterface $token, $subject, array $attributes)`
`50`	`50`	`{`
`51`		`- if (!$this->supportsClass(get_class($object))) {`
	`51`	`+ if (!is_object($subject) \|\| !$this->supportsClass(get_class($subject))) {`
`52`	`52`	`return self::ACCESS_ABSTAIN;`
`53`	`53`	`}`
`54`	`54`
`@@ -61,7 +61,7 @@ public function vote(TokenInterface $token, $object, array $attributes)`
`61`	`61`	`$decision = self::ACCESS_ABSTAIN;`
`62`	`62`	`continue;`
`63`	`63`	`}`
`64`		`- if (!$object->isPublishable()) {`
	`64`	`+ if (!$subject->isPublishable()) {`
`65`	`65`	`return self::ACCESS_DENIED;`
`66`	`66`	`}`
`67`	`67`	`}`
Original file line number	Diff line number	Diff line change
`@@ -57,11 +57,11 @@ public function supportsClass($class)`
`57`	`57`	`/**`
`58`	`58`	`* {@inheritdoc}`
`59`	`59`	`*`
`60`		`- * @param object $object`
	`60`	`+ * @param object $subject`
`61`	`61`	`*/`
`62`		`- public function vote(TokenInterface $token, $object, array $attributes)`
	`62`	`+ public function vote(TokenInterface $token, $subject, array $attributes)`
`63`	`63`	`{`
`64`		`- if (!$this->supportsClass(get_class($object))) {`
	`64`	`+ if (!is_object($subject) \|\| !$this->supportsClass(get_class($subject))) {`
`65`	`65`	`return self::ACCESS_ABSTAIN;`
`66`	`66`	`}`
`67`	`67`	`foreach ($attributes as $attribute) {`
`@@ -70,7 +70,7 @@ public function vote(TokenInterface $token, $object, array $attributes)`
`70`	`70`	`}`
`71`	`71`	`}`
`72`	`72`
`73`		`- if ($this->publishWorkflowChecker->isGranted($attributes, $object)) {`
	`73`	`+ if ($this->publishWorkflowChecker->isGranted($attributes, $subject)) {`
`74`	`74`	`return self::ACCESS_GRANTED;`
`75`	`75`	`}`
`76`	`76`
Original file line number	Diff line number	Diff line change
`@@ -132,4 +132,10 @@ public function testUnsupportedClass()`
`132`	`132`	`);`
`133`	`133`	`$this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);`
`134`	`134`	`}`
	`135`	`+`
	`136`	`+ public function testNonClassSubject()`
	`137`	`+ {`
	`138`	`+ $result = $this->voter->vote($this->token, array(1, 2, 3), array(PublishWorkflowChecker::VIEW_ATTRIBUTE));`
	`139`	`+ $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);`
	`140`	`+ }`
`135`	`141`	`}`
Original file line number	Diff line number	Diff line change
`@@ -100,4 +100,10 @@ public function testUnsupportedClass()`
`100`	`100`	`);`
`101`	`101`	`$this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);`
`102`	`102`	`}`
	`103`	`+`
	`104`	`+ public function testNonClassSubject()`
	`105`	`+ {`
	`106`	`+ $result = $this->voter->vote($this->token, array(1, 2, 3), array(PublishWorkflowChecker::VIEW_ATTRIBUTE));`
	`107`	`+ $this->assertEquals(VoterInterface::ACCESS_ABSTAIN, $result);`
	`108`	`+ }`
`103`	`109`	`}`