- updated AbstractToken to compare Roles - Updated isEqualTo method to match roles as default User implements EquatableInterface - added test case - bumped symfony/security-core to 4.4

oleg-andreyev · oleg-andreyev · commit e8484c778579 · 2019-09-06T15:59:50.000+03:00
diff --git a/Authentication/Token/AbstractToken.php b/Authentication/Token/AbstractToken.php
@@ -166,6 +166,7 @@ public function __serialize(): array
      * @return string
      *
      * @final since Symfony 4.3, use __serialize() instead
+     *
      * @internal since Symfony 4.3, use __serialize() instead
      */
     public function serialize()
@@ -316,6 +317,13 @@ private function hasUserChanged(UserInterface $user)
             return true;
         }
 
+        $userRoles = array_map('strval', (array) $user->getRoles());
+        $rolesChanged = \count($userRoles) !== \count($this->getRoleNames()) || \count($userRoles) !== \count(array_intersect($userRoles, $this->getRoleNames()));
+
+        if ($rolesChanged) {
+            return true;
+        }
+
         if ($this->user->getUsername() !== $user->getUsername()) {
             return true;
         }
diff --git a/Tests/User/UserTest.php b/Tests/User/UserTest.php
@@ -117,8 +117,8 @@ public static function isEqualToData()
     {
         return [
             [true, new User('username', 'password'), new User('username', 'password')],
-            [true, new User('username', 'password', ['ROLE']), new User('username', 'password')],
-            [true, new User('username', 'password', ['ROLE']), new User('username', 'password', ['NO ROLE'])],
+            [false, new User('username', 'password', ['ROLE']), new User('username', 'password')],
+            [false, new User('username', 'password', ['ROLE']), new User('username', 'password', ['NO ROLE'])],
             [false, new User('diff', 'diff'), new User('username', 'password')],
             [false, new User('diff', 'diff', [], false), new User('username', 'password')],
             [false, new User('diff', 'diff', [], false, false), new User('username', 'password')],
diff --git a/User/User.php b/User/User.php
@@ -143,6 +143,13 @@ public function isEqualTo(UserInterface $user): bool
             return false;
         }
 
+        $currentRoles = array_map('strval', (array) $this->getRoles());
+        $newRoles = array_map('strval', (array) $user->getRoles());
+        $rolesChanged = \count($currentRoles) !== \count($newRoles) || \count($currentRoles) !== \count(array_intersect($currentRoles, $newRoles));
+        if ($rolesChanged) {
+            return false;
+        }
+
         if ($this->getUsername() !== $user->getUsername()) {
             return false;
         }

Original file line number	Diff line number	Diff line change
`@@ -143,6 +143,13 @@ public function isEqualTo(UserInterface $user): bool`
`143`	`143`	`return false;`
`144`	`144`	`}`
`145`	`145`
	`146`	`+ $currentRoles = array_map('strval', (array) $this->getRoles());`
	`147`	`+ $newRoles = array_map('strval', (array) $user->getRoles());`
	`148`	`+ $rolesChanged = \count($currentRoles) !== \count($newRoles) \|\| \count($currentRoles) !== \count(array_intersect($currentRoles, $newRoles));`
	`149`	`+ if ($rolesChanged) {`
	`150`	`+ return false;`
	`151`	`+ }`
	`152`	`+`
`146`	`153`	`if ($this->getUsername() !== $user->getUsername()) {`
`147`	`154`	`return false;`
`148`	`155`	`}`