hdabo_sf: vendor/symfony/src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php@7f95f8617b0b (annotated)

0 7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	2
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	3	/*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	4	* This file is part of the Symfony framework.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	5	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	6	* (c) Fabien Potencier <fabien@symfony.com>
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	7	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	8	* This source file is subject to the MIT license that is bundled
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	9	* with this source code in the file LICENSE.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	10	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	11
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	12	namespace Symfony\Bundle\SecurityBundle\DependencyInjection;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	13
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	14	use Symfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\AbstractFactory;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	15
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	16	use Symfony\Component\Config\Definition\Builder\TreeBuilder;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	17	use Symfony\Component\Config\Definition\Builder\ArrayNodeDefinition;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	18	use Symfony\Component\Config\Definition\ConfigurationInterface;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	19
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	20	/**
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	21	* This class contains the configuration information for the following tags:
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	22	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	23	* * security.config
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	24	* * security.acl
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	25	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	26	* This information is solely responsible for how the different configuration
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	27	* sections are normalized, and merged.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	28	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	29	* @author Johannes M. Schmitt <schmittjoh@gmail.com>
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	30	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	31	class MainConfiguration implements ConfigurationInterface
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	32	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	33	private $factories;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	34
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	35	/**
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	36	* Constructor.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	37	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	38	* @param array $factories
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	39	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	40	public function __construct(array $factories)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	41	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	42	$this->factories = $factories;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	43	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	44
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	45	/**
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	46	* Generates the configuration tree builder.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	47	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	48	* @return \Symfony\Component\Config\Definition\Builder\TreeBuilder The tree builder
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	49	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	50	public function getConfigTreeBuilder()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	51	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	52	$tb = new TreeBuilder();
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	53	$rootNode = $tb->root('security');
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	54
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	55	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	56	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	57	->scalarNode('access_denied_url')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	58	->scalarNode('session_fixation_strategy')->cannotBeEmpty()->defaultValue('migrate')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	59	->booleanNode('hide_user_not_found')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	60	->booleanNode('always_authenticate_before_granting')->defaultFalse()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	61	->arrayNode('access_decision_manager')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	62	->addDefaultsIfNotSet()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	63	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	64	->scalarNode('strategy')->defaultValue('affirmative')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	65	->booleanNode('allow_if_all_abstain')->defaultFalse()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	66	->booleanNode('allow_if_equal_granted_denied')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	67	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	68	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	69	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	70	// add a faux-entry for factories, so that no validation error is thrown
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	71	->fixXmlConfig('factory', 'factories')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	72	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	73	->arrayNode('factories')->ignoreExtraKeys()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	74	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	75	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	76
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	77	$this->addAclSection($rootNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	78	$this->addEncodersSection($rootNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	79	$this->addProvidersSection($rootNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	80	$this->addFirewallsSection($rootNode, $this->factories);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	81	$this->addAccessControlSection($rootNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	82	$this->addRoleHierarchySection($rootNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	83
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	84	return $tb;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	85	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	86
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	87	private function addAclSection(ArrayNodeDefinition $rootNode)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	88	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	89	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	90	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	91	->arrayNode('acl')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	92	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	93	->scalarNode('connection')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	94	->arrayNode('cache')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	95	->addDefaultsIfNotSet()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	96	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	97	->scalarNode('id')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	98	->scalarNode('prefix')->defaultValue('sf2_acl_')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	99	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	100	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	101	->scalarNode('provider')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	102	->arrayNode('tables')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	103	->addDefaultsIfNotSet()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	104	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	105	->scalarNode('class')->defaultValue('acl_classes')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	106	->scalarNode('entry')->defaultValue('acl_entries')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	107	->scalarNode('object_identity')->defaultValue('acl_object_identities')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	108	->scalarNode('object_identity_ancestors')->defaultValue('acl_object_identity_ancestors')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	109	->scalarNode('security_identity')->defaultValue('acl_security_identities')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	110	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	111	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	112	->arrayNode('voter')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	113	->addDefaultsIfNotSet()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	114	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	115	->booleanNode('allow_if_object_identity_unavailable')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	116	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	117	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	118	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	119	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	120	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	121	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	122	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	123
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	124	private function addRoleHierarchySection(ArrayNodeDefinition $rootNode)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	125	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	126	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	127	->fixXmlConfig('role', 'role_hierarchy')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	128	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	129	->arrayNode('role_hierarchy')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	130	->useAttributeAsKey('id')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	131	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	132	->performNoDeepMerging()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	133	->beforeNormalization()->ifString()->then(function($v) { return array('value' => $v); })->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	134	->beforeNormalization()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	135	->ifTrue(function($v) { return is_array($v) && isset($v['value']); })
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	136	->then(function($v) { return preg_split('/\s,\s/', $v['value']); })
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	137	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	138	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	139	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	140	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	141	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	142	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	143	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	144
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	145	private function addAccessControlSection(ArrayNodeDefinition $rootNode)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	146	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	147	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	148	->fixXmlConfig('rule', 'access_control')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	149	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	150	->arrayNode('access_control')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	151	->cannotBeOverwritten()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	152	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	153	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	154	->scalarNode('requires_channel')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	155	->scalarNode('path')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	156	->scalarNode('host')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	157	->scalarNode('ip')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	158	->arrayNode('methods')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	159	->beforeNormalization()->ifString()->then(function($v) { return preg_split('/\s,\s/', $v); })->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	160	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	161	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	162	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	163	->fixXmlConfig('role')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	164	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	165	->arrayNode('roles')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	166	->beforeNormalization()->ifString()->then(function($v) { return preg_split('/\s,\s/', $v); })->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	167	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	168	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	169	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	170	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	171	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	172	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	173	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	174	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	175
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	176	private function addFirewallsSection(ArrayNodeDefinition $rootNode, array $factories)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	177	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	178	$firewallNodeBuilder = $rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	179	->fixXmlConfig('firewall')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	180	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	181	->arrayNode('firewalls')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	182	->isRequired()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	183	->requiresAtLeastOneElement()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	184	->disallowNewKeysInSubsequentConfigs()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	185	->useAttributeAsKey('name')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	186	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	187	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	188	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	189
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	190	$firewallNodeBuilder
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	191	->scalarNode('pattern')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	192	->booleanNode('security')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	193	->scalarNode('request_matcher')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	194	->scalarNode('access_denied_url')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	195	->scalarNode('access_denied_handler')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	196	->scalarNode('entry_point')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	197	->scalarNode('provider')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	198	->booleanNode('stateless')->defaultFalse()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	199	->scalarNode('context')->cannotBeEmpty()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	200	->arrayNode('logout')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	201	->treatTrueLike(array())
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	202	->canBeUnset()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	203	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	204	->scalarNode('path')->defaultValue('/logout')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	205	->scalarNode('target')->defaultValue('/')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	206	->scalarNode('success_handler')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	207	->booleanNode('invalidate_session')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	208	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	209	->fixXmlConfig('delete_cookie')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	210	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	211	->arrayNode('delete_cookies')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	212	->beforeNormalization()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	213	->ifTrue(function($v) { return is_array($v) && is_int(key($v)); })
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	214	->then(function($v) { return array_map(function($v) { return array('name' => $v); }, $v); })
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	215	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	216	->useAttributeAsKey('name')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	217	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	218	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	219	->scalarNode('path')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	220	->scalarNode('domain')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	221	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	222	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	223	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	224	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	225	->fixXmlConfig('handler')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	226	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	227	->arrayNode('handlers')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	228	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	229	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	230	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	231	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	232	->arrayNode('anonymous')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	233	->canBeUnset()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	234	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	235	->scalarNode('key')->defaultValue(uniqid())->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	236	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	237	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	238	->arrayNode('switch_user')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	239	->canBeUnset()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	240	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	241	->scalarNode('provider')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	242	->scalarNode('parameter')->defaultValue('_switch_user')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	243	->scalarNode('role')->defaultValue('ROLE_ALLOWED_TO_SWITCH')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	244	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	245	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	246	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	247
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	248	$abstractFactoryKeys = array();
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	249	foreach ($factories as $factoriesAtPosition) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	250	foreach ($factoriesAtPosition as $factory) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	251	$name = str_replace('-', '_', $factory->getKey());
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	252	$factoryNode = $firewallNodeBuilder->arrayNode($name)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	253	->canBeUnset()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	254	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	255
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	256	if ($factory instanceof AbstractFactory) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	257	$abstractFactoryKeys[] = $name;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	258	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	259
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	260	$factory->addConfiguration($factoryNode);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	261	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	262	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	263
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	264	// check for unreachable check paths
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	265	$firewallNodeBuilder
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	266	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	267	->validate()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	268	->ifTrue(function($v) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	269	return true === $v['security'] && isset($v['pattern']) && !isset($v['request_matcher']);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	270	})
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	271	->then(function($firewall) use($abstractFactoryKeys) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	272	foreach ($abstractFactoryKeys as $k) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	273	if (!isset($firewall[$k]['check_path'])) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	274	continue;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	275	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	276
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	277	if (!preg_match('#'.$firewall['pattern'].'#', $firewall[$k]['check_path'])) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	278	throw new \LogicException(sprintf('The check_path "%s" for login method "%s" is not matched by the firewall pattern "%s".', $firewall[$k]['check_path'], $k, $firewall['pattern']));
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	279	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	280	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	281
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	282	return $firewall;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	283	})
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	284	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	285	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	286	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	287
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	288	private function addProvidersSection(ArrayNodeDefinition $rootNode)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	289	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	290	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	291	->fixXmlConfig('provider')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	292	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	293	->arrayNode('providers')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	294	->disallowNewKeysInSubsequentConfigs()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	295	->isRequired()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	296	->requiresAtLeastOneElement()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	297	->useAttributeAsKey('name')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	298	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	299	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	300	->scalarNode('id')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	301	->arrayNode('entity')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	302	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	303	->scalarNode('class')->isRequired()->cannotBeEmpty()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	304	->scalarNode('property')->defaultNull()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	305	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	306	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	307	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	308	->fixXmlConfig('provider')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	309	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	310	->arrayNode('providers')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	311	->beforeNormalization()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	312	->ifString()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	313	->then(function($v) { return preg_split('/\s,\s/', $v); })
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	314	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	315	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	316	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	317	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	318	->fixXmlConfig('user')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	319	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	320	->arrayNode('users')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	321	->useAttributeAsKey('name')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	322	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	323	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	324	->scalarNode('password')->defaultValue(uniqid())->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	325	->arrayNode('roles')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	326	->beforeNormalization()->ifString()->then(function($v) { return preg_split('/\s,\s/', $v); })->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	327	->prototype('scalar')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	328	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	329	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	330	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	331	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	332	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	333	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	334	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	335	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	336	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	337	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	338
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	339	private function addEncodersSection(ArrayNodeDefinition $rootNode)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	340	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	341	$rootNode
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	342	->fixXmlConfig('encoder')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	343	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	344	->arrayNode('encoders')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	345	->requiresAtLeastOneElement()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	346	->useAttributeAsKey('class')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	347	->prototype('array')
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	348	->canBeUnset()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	349	->performNoDeepMerging()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	350	->beforeNormalization()->ifString()->then(function($v) { return array('algorithm' => $v); })->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	351	->children()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	352	->scalarNode('algorithm')->cannotBeEmpty()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	353	->booleanNode('ignore_case')->defaultFalse()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	354	->booleanNode('encode_as_base64')->defaultTrue()->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	355	->scalarNode('iterations')->defaultValue(5000)->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	356	->scalarNode('id')->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	357	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	358	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	359	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	360	->end()
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	361	;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	362	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	363	}

author	ymh <ymh.work@gmail.com>
	Sat, 24 Sep 2011 15:40:41 +0200
changeset 0	7f95f8617b0b
permissions	-rwxr-xr-x