Skip to content

Minor improvement: Cleaned up the WsseListener example #1686

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 14, 2012
Merged

Minor improvement: Cleaned up the WsseListener example #1686

merged 1 commit into from
Sep 14, 2012

Conversation

dol
Copy link

@dol dol commented Sep 6, 2012

Refactoring the WsseListener

  • AuthenticationManagerInterface will never return a Response, instanceof check is obsolete
  • Added option to redirect to the login page by clear the token of the securityContext

stof
stof reviewed Sep 6, 2012
View reviewed changes
cookbook/security/custom_authentication_provider.rst
if ($request->headers->has('x-wsse')) {
if (!$request->headers->has('x-wsse')) {
throw new BadCredentialsException('Missing mandatory WSSE header');
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is wrong. It makes this listener impossible to use with others authentication listeners as the exception will prevent them from running. If you cannot authenticate the user for this request, you should simply do nothing.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok, thank you for the tip. A 'return' should do the trick?
Good to know, I have to update the Listener in our code base.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes

Minor improvement: Cleaned up the WsseListener example
8785f3f 
Refactoring the WsseListener
* AuthenticationManagerInterface will never return a Response, instanceof check is obsolete
* Added option to redirect to the login page by clear the token of the securityContext
wouterj
wouterj reviewed Sep 6, 2012
View reviewed changes
cookbook/security/custom_authentication_provider.rst
$returnValue = $this->authenticationManager->authenticate($token);
$this->securityContext->setToken($authToken);
} catch (AuthenticationException $failed) {
// you might log something here
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be

// ... you might log something here

weaverryan added a commit that referenced this pull request Sep 14, 2012
@weaverryan
Merge pull request #1686 from dol/minor_fix_in_custom_authentication_…
de4085a 
…provider

Minor improvement: Cleaned up the WsseListener example
@weaverryan weaverryan merged commit de4085a into symfony:2.0 Sep 14, 2012
weaverryan added a commit that referenced this pull request Sep 14, 2012
@weaverryan
[#1686] Very minor tweak per @wouterj
65b316a
@weaverryan
Copy link
Member

Hi Dominic!

These are really great changes! I've merged them in with basically no changes :)

Thanks for the great PR!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dol @weaverryan @stof @wouterj