[Security] removed usage of the deprecated SecurityContextInterface

Author: fabpot

Core/SecurityContext.php

@@ -11,6 +11,8 @@
 
 namespace Symfony\Component\Security\Core;
 
+trigger_error('The '.__NAMESPACE__.'\SecurityContext class is deprecated since version 2.6 and will be removed in 3.0. Use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage or Symfony\Component\Security\Core\Authorization\AuthorizationChecker instead.', E_USER_DEPRECATED);
+
 use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage;
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
@@ -76,8 +78,6 @@ public function __construct($tokenStorage, $authorizationChecker, $alwaysAuthent
      */
     public function getToken()
     {
-        trigger_error('The '.__METHOD__.' method is deprecated since version 2.6 and will be removed in 3.0. Use the Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage::getToken() method instead.', E_USER_DEPRECATED);
-
         return $this->tokenStorage->getToken();
     }
 
@@ -88,8 +88,6 @@ public function getToken()
      */
     public function setToken(TokenInterface $token = null)
     {
-        trigger_error('The '.__METHOD__.' method is deprecated since version 2.6 and will be removed in 3.0. Use the Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage::setToken() method instead.', E_USER_DEPRECATED);
-
         return $this->tokenStorage->setToken($token);
     }
 
@@ -100,8 +98,6 @@ public function setToken(TokenInterface $token = null)
      */
     public function isGranted($attributes, $object = null)
     {
-        trigger_error('The '.__METHOD__.' method is deprecated since version 2.6 and will be removed in 3.0. Use the Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface::isGranted() method instead.', E_USER_DEPRECATED);
-
         return $this->authorizationChecker->isGranted($attributes, $object);
     }
 }

Core/SecurityContextInterface.php

@@ -11,6 +11,8 @@
 
 namespace Symfony\Component\Security\Core;
 
+trigger_error('The '.__NAMESPACE__.'\SecurityContextInterface interface is deprecated since version 2.6 and will be removed in 3.0.', E_USER_DEPRECATED);
+
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 

Core/Tests/SecurityContextTest.php renamed to Core/Tests/LegacySecurityContextTest.php

@@ -15,14 +15,16 @@
 use Symfony\Component\Security\Core\Authorization\AuthorizationChecker;
 use Symfony\Component\Security\Core\SecurityContext;
 
-class SecurityContextTest extends \PHPUnit_Framework_TestCase
+class LegacySecurityContextTest extends \PHPUnit_Framework_TestCase
 {
     private $tokenStorage;
     private $authorizationChecker;
     private $securityContext;
 
     public function setUp()
     {
+        $this->iniSet('error_reporting', -1 & ~E_USER_DEPRECATED);
+
         $this->tokenStorage = $this->getMock('Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface');
         $this->authorizationChecker = $this->getMock('Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface');
         $this->securityContext = new SecurityContext($this->tokenStorage, $this->authorizationChecker);

Core/Tests/Validator/Constraints/UserPasswordValidatorTest.php

@@ -11,9 +11,9 @@
 
 namespace Symfony\Component\Security\Core\Tests\Validator\Constraints;
 
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
 use Symfony\Component\Security\Core\Encoder\PasswordEncoderInterface;
-use Symfony\Component\Security\Core\SecurityContextInterface;
 use Symfony\Component\Security\Core\Validator\Constraints\UserPassword;
 use Symfony\Component\Security\Core\Validator\Constraints\UserPasswordValidator;
 use Symfony\Component\Validator\Tests\Constraints\AbstractConstraintValidatorTest;
@@ -28,9 +28,9 @@ abstract class UserPasswordValidatorTest extends AbstractConstraintValidatorTest
     const SALT = '^S4lt$';
 
     /**
-     * @var SecurityContextInterface
+     * @var TokenStorageInterface
      */
-    protected $securityContext;
+    protected $tokenStorage;
 
     /**
      * @var PasswordEncoderInterface
@@ -44,13 +44,13 @@ abstract class UserPasswordValidatorTest extends AbstractConstraintValidatorTest
 
     protected function createValidator()
     {
-        return new UserPasswordValidator($this->securityContext, $this->encoderFactory);
+        return new UserPasswordValidator($this->tokenStorage, $this->encoderFactory);
     }
 
     protected function setUp()
     {
         $user = $this->createUser();
-        $this->securityContext = $this->createSecurityContext($user);
+        $this->tokenStorage = $this->createTokenStorage($user);
         $this->encoder = $this->createPasswordEncoder();
         $this->encoderFactory = $this->createEncoderFactory($this->encoder);
 
@@ -97,7 +97,7 @@ public function testUserIsNotValid()
     {
         $user = $this->getMock('Foo\Bar\User');
 
-        $this->securityContext = $this->createSecurityContext($user);
+        $this->tokenStorage = $this->createTokenStorage($user);
         $this->validator = $this->createValidator();
         $this->validator->initialize($this->context);
 
@@ -141,11 +141,11 @@ protected function createEncoderFactory($encoder = null)
         return $mock;
     }
 
-    protected function createSecurityContext($user = null)
+    protected function createTokenStorage($user = null)
     {
         $token = $this->createAuthenticationToken($user);
 
-        $mock = $this->getMock('Symfony\Component\Security\Core\SecurityContextInterface');
+        $mock = $this->getMock('Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface');
         $mock
             ->expects($this->any())
             ->method('getToken')

Core/Validator/Constraints/UserPasswordValidator.php

@@ -14,19 +14,25 @@
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\SecurityContextInterface;
 use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Validator\Constraint;
 use Symfony\Component\Validator\ConstraintValidator;
 use Symfony\Component\Validator\Exception\ConstraintDefinitionException;
 use Symfony\Component\Validator\Exception\UnexpectedTypeException;
 
 class UserPasswordValidator extends ConstraintValidator
 {
-    private $securityContext;
+    private $tokenStorage;
     private $encoderFactory;
 
-    public function __construct(SecurityContextInterface $securityContext, EncoderFactoryInterface $encoderFactory)
+    /**
+     * @param SecurityContextInterface|TokenStorageInterface
+     *
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
+     */
+    public function __construct($tokenStorage, EncoderFactoryInterface $encoderFactory)
     {
-        $this->securityContext = $securityContext;
+        $this->tokenStorage = $tokenStorage;
         $this->encoderFactory = $encoderFactory;
     }
 
@@ -39,7 +45,7 @@ public function validate($password, Constraint $constraint)
             throw new UnexpectedTypeException($constraint, __NAMESPACE__.'\UserPassword');
         }
 
-        $user = $this->securityContext->getToken()->getUser();
+        $user = $this->tokenStorage->getToken()->getUser();
 
         if (!$user instanceof UserInterface) {
             throw new ConstraintDefinitionException('The User object must implement the UserInterface interface.');

Http/Firewall/AbstractAuthenticationListener.php

@@ -18,6 +18,7 @@
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Security\Core\SecurityContextInterface;
 use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
 use Symfony\Component\Security\Core\Exception\AuthenticationException;
 use Symfony\Component\Security\Core\Exception\SessionUnavailableException;
@@ -56,7 +57,7 @@ abstract class AbstractAuthenticationListener implements ListenerInterface
     protected $providerKey;
     protected $httpUtils;
 
-    private $securityContext;
+    private $tokenStorage;
     private $sessionStrategy;
     private $dispatcher;
     private $successHandler;
@@ -66,27 +67,29 @@ abstract class AbstractAuthenticationListener implements ListenerInterface
     /**
      * Constructor.
      *
-     * @param SecurityContextInterface               $securityContext       A SecurityContext instance
-     * @param AuthenticationManagerInterface         $authenticationManager An AuthenticationManagerInterface instance
-     * @param SessionAuthenticationStrategyInterface $sessionStrategy
-     * @param HttpUtils                              $httpUtils             An HttpUtilsInterface instance
-     * @param string                                 $providerKey
-     * @param AuthenticationSuccessHandlerInterface  $successHandler
-     * @param AuthenticationFailureHandlerInterface  $failureHandler
-     * @param array                                  $options               An array of options for the processing of a
-     *                                                                      successful, or failed authentication attempt
-     * @param LoggerInterface                        $logger                A LoggerInterface instance
-     * @param EventDispatcherInterface               $dispatcher            An EventDispatcherInterface instance
+     * @param SecurityContextInterface|TokenStorageInterface $tokenStorage          A SecurityContext or a TokenStorageInterface instance
+     * @param AuthenticationManagerInterface                 $authenticationManager An AuthenticationManagerInterface instance
+     * @param SessionAuthenticationStrategyInterface         $sessionStrategy
+     * @param HttpUtils                                      $httpUtils             An HttpUtilsInterface instance
+     * @param string                                         $providerKey
+     * @param AuthenticationSuccessHandlerInterface          $successHandler
+     * @param AuthenticationFailureHandlerInterface          $failureHandler
+     * @param array                                          $options               An array of options for the processing of a
+     *                                                                              successful, or failed authentication attempt
+     * @param LoggerInterface                                $logger                A LoggerInterface instance
+     * @param EventDispatcherInterface                       $dispatcher            An EventDispatcherInterface instance
      *
      * @throws \InvalidArgumentException
+     *
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
      */
-    public function __construct(SecurityContextInterface $securityContext, AuthenticationManagerInterface $authenticationManager, SessionAuthenticationStrategyInterface $sessionStrategy, HttpUtils $httpUtils, $providerKey, AuthenticationSuccessHandlerInterface $successHandler, AuthenticationFailureHandlerInterface $failureHandler, array $options = array(), LoggerInterface $logger = null, EventDispatcherInterface $dispatcher = null)
+    public function __construct($tokenStorage, AuthenticationManagerInterface $authenticationManager, SessionAuthenticationStrategyInterface $sessionStrategy, HttpUtils $httpUtils, $providerKey, AuthenticationSuccessHandlerInterface $successHandler, AuthenticationFailureHandlerInterface $failureHandler, array $options = array(), LoggerInterface $logger = null, EventDispatcherInterface $dispatcher = null)
     {
         if (empty($providerKey)) {
             throw new \InvalidArgumentException('$providerKey must not be empty.');
         }
 
-        $this->securityContext = $securityContext;
+        $this->tokenStorage = $tokenStorage;
         $this->authenticationManager = $authenticationManager;
         $this->sessionStrategy = $sessionStrategy;
         $this->providerKey = $providerKey;
@@ -196,9 +199,9 @@ private function onFailure(Request $request, AuthenticationException $failed)
             $this->logger->info(sprintf('Authentication request failed: %s', $failed->getMessage()));
         }
 
-        $token = $this->securityContext->getToken();
+        $token = $this->tokenStorage->getToken();
         if ($token instanceof UsernamePasswordToken && $this->providerKey === $token->getProviderKey()) {
-            $this->securityContext->setToken(null);
+            $this->tokenStorage->setToken(null);
         }
 
         $response = $this->failureHandler->onAuthenticationFailure($request, $failed);
@@ -216,7 +219,7 @@ private function onSuccess(Request $request, TokenInterface $token)
             $this->logger->info(sprintf('User "%s" has been authenticated successfully', $token->getUsername()));
         }
 
-        $this->securityContext->setToken($token);
+        $this->tokenStorage->setToken($token);
 
         $session = $request->getSession();
         $session->remove(Security::AUTHENTICATION_ERROR);

Http/Firewall/AbstractPreAuthenticatedListener.php

@@ -14,6 +14,7 @@
 use Symfony\Component\Security\Core\SecurityContextInterface;
 use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\PreAuthenticatedToken;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Exception\AuthenticationException;
 use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
 use Symfony\Component\Security\Http\SecurityEvents;
@@ -33,14 +34,19 @@
 abstract class AbstractPreAuthenticatedListener implements ListenerInterface
 {
     protected $logger;
-    private $securityContext;
+    private $tokenStorage;
     private $authenticationManager;
     private $providerKey;
     private $dispatcher;
 
-    public function __construct(SecurityContextInterface $securityContext, AuthenticationManagerInterface $authenticationManager, $providerKey, LoggerInterface $logger = null, EventDispatcherInterface $dispatcher = null)
+    /**
+     * @param SecurityContextInterface|TokenStorageInterface
+     *
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
+     */
+    public function __construct($tokenStorage, AuthenticationManagerInterface $authenticationManager, $providerKey, LoggerInterface $logger = null, EventDispatcherInterface $dispatcher = null)
     {
-        $this->securityContext = $securityContext;
+        $this->tokenStorage = $tokenStorage;
         $this->authenticationManager = $authenticationManager;
         $this->providerKey = $providerKey;
         $this->logger = $logger;
@@ -57,7 +63,7 @@ final public function handle(GetResponseEvent $event)
         $request = $event->getRequest();
 
         if (null !== $this->logger) {
-            $this->logger->debug(sprintf('Checking secure context token: %s', $this->securityContext->getToken()));
+            $this->logger->debug(sprintf('Checking secure context token: %s', $this->tokenStorage->getToken()));
         }
 
         try {
@@ -68,7 +74,7 @@ final public function handle(GetResponseEvent $event)
             return;
         }
 
-        if (null !== $token = $this->securityContext->getToken()) {
+        if (null !== $token = $this->tokenStorage->getToken()) {
             if ($token instanceof PreAuthenticatedToken && $this->providerKey == $token->getProviderKey() && $token->isAuthenticated() && $token->getUsername() === $user) {
                 return;
             }
@@ -84,7 +90,7 @@ final public function handle(GetResponseEvent $event)
             if (null !== $this->logger) {
                 $this->logger->info(sprintf('Authentication success: %s', $token));
             }
-            $this->securityContext->setToken($token);
+            $this->tokenStorage->setToken($token);
 
             if (null !== $this->dispatcher) {
                 $loginEvent = new InteractiveLoginEvent($request, $token);
@@ -102,9 +108,9 @@ final public function handle(GetResponseEvent $event)
      */
     private function clearToken(AuthenticationException $exception)
     {
-        $token = $this->securityContext->getToken();
+        $token = $this->tokenStorage->getToken();
         if ($token instanceof PreAuthenticatedToken && $this->providerKey === $token->getProviderKey()) {
-            $this->securityContext->setToken(null);
+            $this->tokenStorage->setToken(null);
 
             if (null !== $this->logger) {
                 $this->logger->info(sprintf("Cleared security context due to exception: %s", $exception->getMessage()));

Http/Firewall/AccessListener.php

@@ -15,6 +15,7 @@
 use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
 use Symfony\Component\Security\Http\AccessMapInterface;
 use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\HttpKernel\Event\GetResponseEvent;
 use Symfony\Component\Security\Core\Exception\AuthenticationCredentialsNotFoundException;
 use Symfony\Component\Security\Core\Exception\AccessDeniedException;
@@ -26,14 +27,19 @@
  */
 class AccessListener implements ListenerInterface
 {
-    private $context;
+    private $tokenStorage;
     private $accessDecisionManager;
     private $map;
     private $authManager;
 
-    public function __construct(SecurityContextInterface $context, AccessDecisionManagerInterface $accessDecisionManager, AccessMapInterface $map, AuthenticationManagerInterface $authManager)
+    /**
+     * @param SecurityContextInterface|TokenStorageInterface
+     *
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
+     */
+    public function __construct($tokenStorage, AccessDecisionManagerInterface $accessDecisionManager, AccessMapInterface $map, AuthenticationManagerInterface $authManager)
     {
-        $this->context = $context;
+        $this->tokenStorage = $tokenStorage;
         $this->accessDecisionManager = $accessDecisionManager;
         $this->map = $map;
         $this->authManager = $authManager;
@@ -49,7 +55,7 @@ public function __construct(SecurityContextInterface $context, AccessDecisionMan
      */
     public function handle(GetResponseEvent $event)
     {
-        if (null === $token = $this->context->getToken()) {
+        if (null === $token = $this->tokenStorage->getToken()) {
             throw new AuthenticationCredentialsNotFoundException('A Token was not found in the SecurityContext.');
         }
 
@@ -63,7 +69,7 @@ public function handle(GetResponseEvent $event)
 
         if (!$token->isAuthenticated()) {
             $token = $this->authManager->authenticate($token);
-            $this->context->setToken($token);
+            $this->tokenStorage->setToken($token);
         }
 
         if (!$this->accessDecisionManager->decide($token, $attributes, $request)) {