summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* [Security] Fixed typoPascal Borreli2011-02-265-6/+6
|
* added LICENSE files for the subtree repositoriesFabien Potencier2011-02-221-0/+19
|
* replaced Response::createRedirect by a new RedirectResponse classFabien Potencier2011-02-215-6/+11
|
* remove response as a serviceFabien Potencier2011-02-215-18/+6
| | | | | | | | | | | | | | | | The Response is not available in the DIC anymore. When you need to create a response, create an instance of Symfony\Component\HttpFoundation\Response instead. As a side effect, the Controller::createResponse() and Controller::redirect() methods have been removed and can easily be replaced as follows: return $this->createResponse('content', 200, array('foo' => 'bar')); return new Response('content', 200, array('foo' => 'bar')); return $this->redirect($url); return Response::createRedirect($url);
* [Security] adds a chain user providerJohannes M. Schmitt2011-02-161-0/+70
|
* [Security] moved Security classes out of DoctrineBundle, cleaned-up ↵Johannes Schmitt2011-02-163-1/+152
| | | | | | | | | | | | | | SecurityExtension accordingly Note that this commit removes the built-in support for MongoDB user providers. This code can be moved back in once there is a stable release for MongoDB, but for now you have to set-up that user provider just like you would set-up any custom user provider: security: providers: document_provider: id: my.mongo.provider
* [Security/Http] Adds CSRF protection to the form-loginJohannes Schmitt2011-02-162-5/+32
|
* [Security] removed defaults from boolean columnsJohannes M. Schmitt2011-02-167-214/+214
|
* Update code with latest Finder changesVictor Berchet2011-02-161-2/+2
|
* [Security] Add providerKey to PreAuthenticatedToken tokens constructed by ↵Jeremy Mikola2011-02-151-1/+1
| | | | PreAuthenticatedAuthenticationProvider
* [Security] Allow authentication tokens to hold attributesJeremy Mikola2011-02-152-2/+107
|
* [Security] fixes a bug in DigestAuthenticationListenerJohannes M. Schmitt2011-02-141-4/+3
|
* [Security] fixes a bug when clearing cookies on logoutJohannes M. Schmitt2011-02-141-15/+6
|
* [Security] adds logout success handlerJohannes Schmitt2011-02-142-3/+44
|
* [Security] fixes a bug where authentication errors might have leaked ↵Johannes Schmitt2011-02-143-10/+32
| | | | confidential information
* [Security] simplified encoder factory implementationJohannes Schmitt2011-02-141-29/+21
|
* [Security/Acl] added pre-generated schemasJohannes M. Schmitt2011-02-147-0/+399
|
* [Security] Fixed missed argument in call custom handler when authentication ↵Deni2011-02-131-1/+1
| | | | is successful.
* Changed namepace use of SecurityContext to SecurityContextInterface so that ↵dordille2011-02-131-2/+3
| | | | constant SecurityContextInterface::LAST_USERNAME would resolve properly Also changed method signature of __construct to take and instance of SecurityContextInterface instead of SecurityContext
* [Security] fixes some regressionsJohannes M. Schmitt2011-02-133-6/+6
|
* [Security] Fixed indentingJordi Boggiano2011-02-121-22/+22
|
* [Security] performance improvements of PermissionGrantingStrategyJohannes Schmitt2011-02-122-22/+21
|
* [Security] Refactored security context, moved getUser() implementation to ↵Johannes Schmitt2011-02-1213-47/+51
| | | | templating
* [Security] removed __toString() from AccountInterfaceJohannes Schmitt2011-02-122-13/+6
|
* Fixed access denied handlingChristophe Coevoet2011-02-101-2/+0
|
* fixed previous commitFabien Potencier2011-02-042-2/+2
|
* some fixes by just "blindly" trying to make phpStorm code analysis happierLukas Kahwe Smith2011-02-0413-18/+15
|
* fixed method call, cosmetic variable renameLukas Kahwe Smith2011-02-043-7/+7
|
* Revert "[Security] Missing Event namespace in SwitchUserListener"Fabien Potencier2011-02-021-1/+0
| | | | This reverts commit 0169892dcd7f3c5549f7dcbcf0bde9bbadcda525.
* [Security] Missing Event namespace in SwitchUserListenerJeremy Mikola2011-02-021-0/+1
|
* [Security] bug fix in FormAuthenticationEntryPointJohannes M. Schmitt2011-02-0210-28/+34
|
* [Security] fixed a Token serialization bugSebastian Utz2011-02-024-23/+12
|
* [Security] some bug fixesJohannes M. Schmitt2011-02-023-1/+4
|
* Fixed typoSergey Linnik2011-01-281-2/+2
|
* [Security] fixed typoBulat Shakirzyanov2011-01-281-1/+1
|
* added two events "security.interactive_login", and "security.switch_user"Johannes M. Schmitt2011-01-274-1/+28
|
* renamed PreAuthenticatedListener to AbstractPreAuthenticatedListener to be ↵Johannes M. Schmitt2011-01-272-3/+3
| | | | consistent
* added some doc commentsJohannes Schmitt2011-01-276-4/+78
|
* namespace changesJohannes M. Schmitt2011-01-26103-150/+3408
| | | | | | Symfony\Component\Security -> Symfony\Component\Security\Core Symfony\Component\Security\Acl remains unchanged Symfony\Component\HttpKernel\Security -> Symfony\Component\Security\Http
* removed isAuthenticated() from SecurityContextJohannes Schmitt2011-01-261-5/+0
|
* [Security] many improvements, and fixesJohannes Schmitt2011-01-2619-29/+456
|
* fixes else -> } elseLukas Kahwe Smith2011-01-191-7/+3
|
* normalized license messages in PHP filesDominique Bongiraud2011-01-1899-448/+520
|
* removed duplicate codeFabien Potencier2011-01-071-1/+10
|
* added generic encoder factoryJohannes M. Schmitt2011-01-063-10/+113
|\
| * added generic encoder factoryJohannes Schmitt2010-12-213-10/+113
| |
* | added extra exception if only a partial result is foundJohannes M. Schmitt2011-01-052-1/+47
| |
* | optimized AclVoter, added unit testJohannes M. Schmitt2011-01-032-23/+66
| |
* | fix possible duplicate security identitiesJohannes M. Schmitt2011-01-026-50/+74
| |
* | added ACL system to the Security ComponentJohannes Schmitt2010-12-3142-0/+4997
|/
* renamed reloadUserByAccount() to loadUserByAccount()Fabien Potencier2010-12-184-7/+9
|
* remove user provider nameJohannes Schmitt2010-12-189-82/+60
|
* fixed user refreshing after unserializationJohannes Schmitt2010-12-159-41/+231
|
* added authentication trust resolverJohannes Schmitt2010-12-124-6/+209
|
* [Security] fixed method visibilityFabien Potencier2010-12-121-2/+2
|
* removed ForbiddenHttpExceptionFabien Potencier2010-12-103-5/+1
| | | | | | | | | Both HttpKernel and Security define a 403 exception: * Symfony\Component\HttpKernel\Exception\ForbiddenHttpException * Symfony\Component\Security\Exception\AccessDeniedException The one in HttpKernel has been removed in favor of the Security one.
* made some method name changes to have a better coherence throughout the ↵Fabien Potencier2010-11-251-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | framework When an object has a "main" many relation with related "things" (objects, parameters, ...), the method names are normalized: * get() * set() * all() * replace() * remove() * clear() * isEmpty() * add() * register() * count() * keys() The classes below follow this method naming convention: * BrowserKit\CookieJar -> Cookie * BrowserKit\History -> Request * Console\Application -> Command * Console\Application\Helper\HelperSet -> HelperInterface * DependencyInjection\Container -> services * DependencyInjection\ContainerBuilder -> services * DependencyInjection\ParameterBag\ParameterBag -> parameters * DependencyInjection\ParameterBag\FrozenParameterBag -> parameters * DomCrawler\Form -> FormField * EventDispatcher\Event -> parameters * Form\FieldGroup -> Field * HttpFoundation\HeaderBag -> headers * HttpFoundation\ParameterBag -> parameters * HttpFoundation\Session -> attributes * HttpKernel\Profiler\Profiler -> DataCollectorInterface * Routing\RouteCollection -> Route * Security\Authentication\AuthenticationProviderManager -> AuthenticationProviderInterface * Templating\Engine -> HelperInterface * Translation\MessageCatalogue -> messages The usage of these methods are only allowed when it is clear that there is a main relation: * a CookieJar has many Cookies; * a Container has many services and many parameters (as services is the main relation, we use the naming convention for this relation); * a Console Input has many arguments and many options. There is no "main" relation, and so the naming convention does not apply. For many relations where the convention does not apply, the following methods must be used instead (where XXX is the name of the related thing): * get() -> getXXX() * set() -> setXXX() * all() -> getXXXs() * replace() -> setXXXs() * remove() -> removeXXX() * clear() -> clearXXX() * isEmpty() -> isEmptyXXX() * add() -> addXXX() * register() -> registerXXX() * count() -> countXXX() * keys()
* [Security] added some missing unit testsFabien Potencier2010-10-311-1/+3
|
* [Security] added unit tests to some authenticated providers (code coverage ↵Fabien Potencier2010-10-312-15/+9
| | | | is more than 96% for the Security component now)
* [Security] added unit tests for the Authentication sub-namespaceFabien Potencier2010-10-316-10/+17
|
* applies base64 encoding directly to the binary data instead of their ↵Johannes M. Schmitt2010-10-241-4/+4
| | | | hexadecimal representation
* [Security]Fixed markupDominique Bongiraud2010-10-2414-26/+36
|
* [Security]Fixed CSDominique Bongiraud2010-10-246-23/+24
|
* [Security] added more unit testsFabien Potencier2010-10-221-2/+8
|
* [Security] removed type hint in AuthenticationException as the extra ↵Fabien Potencier2010-10-222-10/+8
| | | | information can be of different classes
* [Security] changed encoders to use hash() function whenver possible and ↵Johannes Schmitt2010-10-221-5/+9
| | | | replaced sha1 with sha256 as default algorithm
* [Security] Use a negative length parameter to simplify the codeVictor Berchet2010-10-211-1/+1
|
* [Security] added some unit tests (WIP)Fabien Potencier2010-10-211-12/+3
|
* fixed interfaces problemsFabien Potencier2010-10-211-1/+1
|
* [Security] Fixed typoArtur Kotyrba2010-10-212-5/+3
|
* [Security] changed the way passwords are compared to avoid timing attacksFabien Potencier2010-10-213-3/+28
|
* [Security] Fixed typoPascal Borreli2010-10-201-1/+1
|
* [Security] Fixed coding standardPascal Borreli2010-10-1912-28/+28
|
* [Security] Fixed typoPascal Borreli2010-10-193-3/+3
|
* added the Security Component and its integration into the MVC frameworkFabien Potencier2010-10-1950-0/+2783
Happy birthday symfony!
generated by cgit v1.1 at 2025-06-11 06:01:08 +0000