2 files changed, 14 insertions, 11 deletions

diff --git a/Acl/Domain/AclCollectionCache.php b/Acl/Domain/AclCollectionCache.php
index 88c017c..d3a4b37 100644
--- a/Acl/Domain/AclCollectionCache.php
+++ b/Acl/Domain/AclCollectionCache.php
@@ -44,8 +44,8 @@ class AclCollectionCache
      * Batch loads ACLs for an entire collection; thus, it reduces the number
      * of required queries considerably.
      *
-     * @param mixed $collection anything that can be passed to foreach()
-     * @param array $tokens     an array of TokenInterface implementations
+     * @param mixed            $collection anything that can be passed to foreach()
+     * @param TokenInterface[] $tokens     an array of TokenInterface implementations
      */
     public function cache($collection, array $tokens = array())
     {
diff --git a/Acl/Domain/PermissionGrantingStrategy.php b/Acl/Domain/PermissionGrantingStrategy.php
index 3b4e99a..e075861 100644
--- a/Acl/Domain/PermissionGrantingStrategy.php
+++ b/Acl/Domain/PermissionGrantingStrategy.php
@@ -16,6 +16,7 @@ use Symfony\Component\Security\Acl\Model\AclInterface;
 use Symfony\Component\Security\Acl\Model\AuditLoggerInterface;
 use Symfony\Component\Security\Acl\Model\EntryInterface;
 use Symfony\Component\Security\Acl\Model\PermissionGrantingStrategyInterface;
+use Symfony\Component\Security\Acl\Model\SecurityIdentityInterface;
 
 /**
  * The permission granting strategy to apply to the access control list.
@@ -120,16 +121,15 @@ class PermissionGrantingStrategy implements PermissionGrantingStrategyInterface
      * permission/identity combination.
      *
      * This process is repeated until either a granting ACE is found, or no
-     * permission/identity combinations are left. In the latter case, we will
-     * call this method on the parent ACL if it exists, and isEntriesInheriting
-     * is true. Otherwise, we will either throw an NoAceFoundException, or deny
-     * access finally.
+     * permission/identity combinations are left. Finally, we will either throw
+     * an NoAceFoundException, or deny access.
+     *
+     * @param AclInterface                $acl
+     * @param EntryInterface[]            $aces               An array of ACE to check against
+     * @param array                       $masks              An array of permission masks
+     * @param SecurityIdentityInterface[] $sids               An array of SecurityIdentityInterface implementations
+     * @param Boolean                     $administrativeMode True turns off audit logging
      *
-     * @param AclInterface $acl
-     * @param array        $aces               An array of ACE to check against
-     * @param array        $masks              An array of permission masks
-     * @param array        $sids               An array of SecurityIdentityInterface implementations
-     * @param Boolean      $administrativeMode True turns off audit logging
      * @return Boolean true, or false; either granting, or denying access respectively.
      */
     private function hasSufficientPermissions(AclInterface $acl, array $aces, array $masks, array $sids, $administrativeMode)
@@ -188,7 +188,10 @@ class PermissionGrantingStrategy implements PermissionGrantingStrategyInterface
      *
      * @param integer        $requiredMask
      * @param EntryInterface $ace
+     *
      * @return Boolean
+     *
+     * @throws \RuntimeException if the ACE strategy is not supported
      */
     private function isAceApplicable($requiredMask, EntryInterface $ace)
     {