Add a 2rd argument to getInt to make it strict. Add deprecation when not set to true

GromNaN · GromNaN · commit 9717f40404ae · 2022-12-09T17:36:39.000+01:00
diff --git a/UPGRADE-6.3.md b/UPGRADE-6.3.md
@@ -19,4 +19,5 @@ SecurityBundle
 HttpFoundation
 --------------
 
- * Deprecate `ParameterBag::getInt`, use `ParameterBag::getInteger` instead
+ * Set 3rd argument of `ParameterBag::getInt($key, $default, $failOnInvalid)` to `true` to make an exception in cas of invalid data.
+   To keep the previous behaviour, cast the result of `ParameterBag::get()`: `(int) $parameters->get('foo')`
diff --git a/src/Symfony/Component/HttpFoundation/CHANGELOG.md b/src/Symfony/Component/HttpFoundation/CHANGELOG.md
@@ -1,11 +1,13 @@
 CHANGELOG
 =========
+
 6.3
 ---
 
- * Deprecate `ParameterBag::getInt`, replaced by `ParameterBag::getInteger` to behavior on invalid value
- * Add `ParameterBag::getString` and `ParameterBag::getInteger` to validate and convert a parameter into string or int
- * Calling `ParameterBag` `getDigit`, `getAlnum`, `getAlpha`, `getInteger`, `getString` on an `array` throws an `UnexpectedValueException` instead of a `TypeError`
+ * Add a 3rd argument to `ParameterBag::getInt`. When set to `true`, the method throw an exception if the parameter is invalid
+ * Deprecate calling `ParameterBag::getInt` without setting `true` as 3rd argument
+ * Add `ParameterBag::getString` to convert a parameter into string and throw an exception if the parameter is invalid
+ * Calling `ParameterBag` `getDigit`, `getAlnum`, `getAlpha` on an `array` throws an `UnexpectedValueException` instead of a `TypeError`
 
 6.2
 ---
diff --git a/src/Symfony/Component/HttpFoundation/InputBag.php b/src/Symfony/Component/HttpFoundation/InputBag.php
@@ -73,6 +73,24 @@ public function set(string $key, mixed $value)
         $this->parameters[$key] = $value;
     }
 
+    /**
+     * Returns the parameter value converted to integer.
+     */
+    public function getInt(string $key, int $default = 0, bool $failOnInvalid = false): int
+    {
+        if (false === $failOnInvalid) {
+            trigger_deprecation('symfony/http-foundation', '6.3', '3rd argument "$failOnInvalid" of the method "%s" will always be "true" on 7.0.', __METHOD__);
+
+            return (int) $this->get($key, $default);
+        }
+        $value = $this->filter($key, $default, \FILTER_VALIDATE_INT, ['flags' => \FILTER_REQUIRE_SCALAR]);
+        if (false === $value) {
+            throw new BadRequestException(sprintf('Parameter value "%s" cannot be converted to "int".', $key));
+        }
+
+        return $value;
+    }
+
     public function getString(string $key, string $default = ''): string
     {
         return (string) $this->get($key, $default);
diff --git a/src/Symfony/Component/HttpFoundation/ParameterBag.php b/src/Symfony/Component/HttpFoundation/ParameterBag.php
@@ -121,33 +121,21 @@ public function getAlnum(string $key, string $default = ''): string
      */
     public function getDigits(string $key, string $default = ''): string
     {
-        $value = $this->filter($key, $default, \FILTER_SANITIZE_NUMBER_INT, ['flags' => \FILTER_REQUIRE_SCALAR]);
-        if (false === $value) {
-            throw new \UnexpectedValueException(sprintf('Parameter value "%s" cannot be converted to "string".', $key));
-        }
-
-        // we need to remove - and + because they're allowed in the filter
-        return str_replace(['-', '+'], '', $value);
+        return preg_replace('/[^[:digit:]]/', '', $this->getString($key, $default));
     }
 
     /**
      * Returns the parameter value converted to integer.
-     * @deprecated since Symfony 6.3, replaced by getInteger
      */
-    public function getInt(string $key, int $default = 0): int
+    public function getInt(string $key, int $default = 0, bool $failOnInvalid = false): int
     {
-        trigger_deprecation('symfony/http-foundation', '6.3', 'Method "getInt" is deprecated and replaced by "getInteger".');
+        if (false === $failOnInvalid) {
+            trigger_deprecation('symfony/http-foundation', '6.3', '3rd argument "$failOnInvalid" of the method "%s" will always be "true" on 7.0.', __METHOD__);
 
-        return (int) $this->get($key, $default);
-    }
-
-    /**
-     * Returns the parameter value converted to integer.
-     */
-    public function getInteger(string $key, int $default = 0): int
-    {
+            return (int) $this->get($key, $default);
+        }
         $value = $this->filter($key, $default, \FILTER_VALIDATE_INT, ['flags' => \FILTER_REQUIRE_SCALAR]);
-        if (!\is_int($value)) {
+        if (false === $value) {
             throw new \UnexpectedValueException(sprintf('Parameter value "%s" cannot be converted to "int".', $key));
         }
 
@@ -156,8 +144,6 @@ public function getInteger(string $key, int $default = 0): int
 
     /**
      * Returns the parameter as string.
-     *
-     * @@throws \UnexpectedValueException when
      */
     public function getString(string $key, string $default = ''): string
     {
diff --git a/src/Symfony/Component/HttpFoundation/Tests/InputBagTest.php b/src/Symfony/Component/HttpFoundation/Tests/InputBagTest.php
@@ -35,6 +35,16 @@ public function __toString(): string
         $this->assertFalse($bag->get('bool'), '->get() gets the value of a bool parameter');
     }
 
+    public function testGetIntegerError()
+    {
+        $bag = new InputBag(['foo' => 'bar']);
+
+        $this->expectException(BadRequestException::class);
+        $this->expectExceptionMessage('Parameter value "foo" cannot be converted to "int".');
+
+        $bag->getInt('foo', 0, true);
+    }
+
     public function testGetString()
     {
         $bag = new InputBag(['integer' => 123, 'bool_true' => true, 'bool_false' => false, 'string' => 'abc', 'stringable' => new ParamStringable('bar')]);
@@ -129,6 +139,36 @@ public function testFilterArrayWithoutArrayFlag()
         $bag = new InputBag(['foo' => ['bar', 'baz']]);
         $bag->filter('foo', \FILTER_VALIDATE_INT);
     }
+
+    public function testGetAlnumExceptionWithArray()
+    {
+        $bag = new InputBag(['word' => ['foo_BAR_012']]);
+
+        $this->expectException(BadRequestException::class);
+        $this->expectExceptionMessage('Input value "word" contains a non-scalar value.');
+
+        $bag->getAlnum('word');
+    }
+
+    public function testGetAlphaExceptionWithArray()
+    {
+        $bag = new InputBag(['word' => ['foo_BAR_012']]);
+
+        $this->expectException(BadRequestException::class);
+        $this->expectExceptionMessage('Input value "word" contains a non-scalar value.');
+
+        $bag->getAlpha('word');
+    }
+
+    public function testGetDigitsExceptionWithArray()
+    {
+        $bag = new InputBag(['word' => ['foo_BAR_012']]);
+
+        $this->expectException(BadRequestException::class);
+        $this->expectExceptionMessage('Input value "word" contains a non-scalar value.');
+
+        $bag->getDigits('word');
+    }
 }
 
 class ParamStringable
diff --git a/src/Symfony/Component/HttpFoundation/Tests/ParameterBagTest.php b/src/Symfony/Component/HttpFoundation/Tests/ParameterBagTest.php
@@ -156,7 +156,7 @@ public function testGetAlnumExceptionWithArray()
 
     public function testGetDigits()
     {
-        $bag = new ParameterBag(['word' => 'foo_BAR_012', 'bool' => true, 'integer' => 123]);
+        $bag = new ParameterBag(['word' => 'foo_BAR_0+1-2', 'bool' => true, 'integer' => 123]);
 
         $this->assertSame('012', $bag->getDigits('word'), '->getDigits() gets only digits as string');
         $this->assertSame('', $bag->getDigits('unknown'), '->getDigits() returns empty string if a parameter is not defined');
@@ -178,9 +178,9 @@ public function testGetDigitsExceptionWithArray()
     /**
      * @group legacy
      */
-    public function testGetInt()
+    public function testGetIntLegacy()
     {
-        $this->expectDeprecation('Since symfony/http-foundation 6.3: Method "getInt" is deprecated and replaced by "getInteger".');
+        $this->expectDeprecation('Since symfony/http-foundation 6.3: 3rd argument "$failOnInvalid" of the method "Symfony\Component\HttpFoundation\ParameterBag::getInt" will always be "true" on 7.0.');
 
         $bag = new ParameterBag(['digits' => '123', 'bool' => true, 'string' => 'abc']);
 
@@ -191,44 +191,44 @@ public function testGetInt()
         $this->assertSame(0, $bag->getInt('string', 10), '->getInt() returns zero if a parameter is invalid');
     }
 
-    public function testGetInteger()
+    public function testGetInt()
     {
         $bag = new ParameterBag(['digits' => '123', 'bool' => true]);
 
-        $this->assertSame(123, $bag->getInteger('digits'), '->getInteger() gets a value of parameter as integer');
-        $this->assertSame(0, $bag->getInteger('unknown'), '->getInteger() returns zero if a parameter is not defined');
-        $this->assertSame(10, $bag->getInteger('unknown', 10), '->getInteger() returns the default if a parameter is not defined');
-        $this->assertSame(1, $bag->getInteger('bool'), '->getInteger() returns 1 if a parameter is true');
+        $this->assertSame(123, $bag->getInt('digits', 0, true), '->getInt() gets a value of parameter as integer');
+        $this->assertSame(0, $bag->getInt('unknown', 0, true), '->getInt() returns zero if a parameter is not defined');
+        $this->assertSame(10, $bag->getInt('unknown', 10, true), '->getInt() returns the default if a parameter is not defined');
+        $this->assertSame(1, $bag->getInt('bool', 0, true), '->getInt() returns 1 if a parameter is true');
     }
 
-    public function testGetIntegerExceptionWithArray()
+    public function testGetIntExceptionWithArray()
     {
         $bag = new ParameterBag(['digits' => ['123']]);
 
         $this->expectException(\UnexpectedValueException::class);
         $this->expectExceptionMessage('Parameter value "digits" cannot be converted to "int".');
 
-        $bag->getInteger('digits');
+        $bag->getInt('digits', 0, true);
     }
 
-    public function testGetIntegerExceptionWithObject()
+    public function testGetIntExceptionWithObject()
     {
         $bag = new ParameterBag(['object' => $this]);
 
         $this->expectException(\UnexpectedValueException::class);
         $this->expectExceptionMessage('Parameter value "object" cannot be filtered.');
 
-        $bag->getInteger('object');
+        $bag->getInt('object', 0, true);
     }
 
-    public function testGetIntegerExceptionWithInvalid()
+    public function testGetIntExceptionWithInvalid()
     {
         $bag = new ParameterBag(['word' => 'foo_BAR_012']);
 
         $this->expectException(\UnexpectedValueException::class);
         $this->expectExceptionMessage('Parameter value "word" cannot be converted to "int".');
 
-        $bag->getInteger('word');
+        $bag->getInt('word', 0, true);
     }
 
     public function testGetString()

Original file line number	Diff line number	Diff line change
`@@ -156,7 +156,7 @@ public function testGetAlnumExceptionWithArray()`
`156`	`156`
`157`	`157`	`public function testGetDigits()`
`158`	`158`	`{`
`159`		`- $bag = new ParameterBag(['word' => 'foo_BAR_012', 'bool' => true, 'integer' => 123]);`
	`159`	`+ $bag = new ParameterBag(['word' => 'foo_BAR_0+1-2', 'bool' => true, 'integer' => 123]);`
`160`	`160`
`161`	`161`	`$this->assertSame('012', $bag->getDigits('word'), '->getDigits() gets only digits as string');`
`162`	`162`	`$this->assertSame('', $bag->getDigits('unknown'), '->getDigits() returns empty string if a parameter is not defined');`
`@@ -178,9 +178,9 @@ public function testGetDigitsExceptionWithArray()`
`178`	`178`	`/**`
`179`	`179`	`* @group legacy`
`180`	`180`	`*/`
`181`		`- public function testGetInt()`
	`181`	`+ public function testGetIntLegacy()`
`182`	`182`	`{`
`183`		`- $this->expectDeprecation('Since symfony/http-foundation 6.3: Method "getInt" is deprecated and replaced by "getInteger".');`
	`183`	`+ $this->expectDeprecation('Since symfony/http-foundation 6.3: 3rd argument "$failOnInvalid" of the method "Symfony\Component\HttpFoundation\ParameterBag::getInt" will always be "true" on 7.0.');`
`184`	`184`
`185`	`185`	`$bag = new ParameterBag(['digits' => '123', 'bool' => true, 'string' => 'abc']);`
`186`	`186`
`@@ -191,44 +191,44 @@ public function testGetInt()`
`191`	`191`	`$this->assertSame(0, $bag->getInt('string', 10), '->getInt() returns zero if a parameter is invalid');`
`192`	`192`	`}`
`193`	`193`
`194`		`- public function testGetInteger()`
	`194`	`+ public function testGetInt()`
`195`	`195`	`{`
`196`	`196`	`$bag = new ParameterBag(['digits' => '123', 'bool' => true]);`
`197`	`197`
`198`		`- $this->assertSame(123, $bag->getInteger('digits'), '->getInteger() gets a value of parameter as integer');`
`199`		`- $this->assertSame(0, $bag->getInteger('unknown'), '->getInteger() returns zero if a parameter is not defined');`
`200`		`- $this->assertSame(10, $bag->getInteger('unknown', 10), '->getInteger() returns the default if a parameter is not defined');`
`201`		`- $this->assertSame(1, $bag->getInteger('bool'), '->getInteger() returns 1 if a parameter is true');`
	`198`	`+ $this->assertSame(123, $bag->getInt('digits', 0, true), '->getInt() gets a value of parameter as integer');`
	`199`	`+ $this->assertSame(0, $bag->getInt('unknown', 0, true), '->getInt() returns zero if a parameter is not defined');`
	`200`	`+ $this->assertSame(10, $bag->getInt('unknown', 10, true), '->getInt() returns the default if a parameter is not defined');`
	`201`	`+ $this->assertSame(1, $bag->getInt('bool', 0, true), '->getInt() returns 1 if a parameter is true');`
`202`	`202`	`}`
`203`	`203`
`204`		`- public function testGetIntegerExceptionWithArray()`
	`204`	`+ public function testGetIntExceptionWithArray()`
`205`	`205`	`{`
`206`	`206`	`$bag = new ParameterBag(['digits' => ['123']]);`
`207`	`207`
`208`	`208`	`$this->expectException(\UnexpectedValueException::class);`
`209`	`209`	`$this->expectExceptionMessage('Parameter value "digits" cannot be converted to "int".');`
`210`	`210`
`211`		`- $bag->getInteger('digits');`
	`211`	`+ $bag->getInt('digits', 0, true);`
`212`	`212`	`}`
`213`	`213`
`214`		`- public function testGetIntegerExceptionWithObject()`
	`214`	`+ public function testGetIntExceptionWithObject()`
`215`	`215`	`{`
`216`	`216`	`$bag = new ParameterBag(['object' => $this]);`
`217`	`217`
`218`	`218`	`$this->expectException(\UnexpectedValueException::class);`
`219`	`219`	`$this->expectExceptionMessage('Parameter value "object" cannot be filtered.');`
`220`	`220`
`221`		`- $bag->getInteger('object');`
	`221`	`+ $bag->getInt('object', 0, true);`
`222`	`222`	`}`
`223`	`223`
`224`		`- public function testGetIntegerExceptionWithInvalid()`
	`224`	`+ public function testGetIntExceptionWithInvalid()`
`225`	`225`	`{`
`226`	`226`	`$bag = new ParameterBag(['word' => 'foo_BAR_012']);`
`227`	`227`
`228`	`228`	`$this->expectException(\UnexpectedValueException::class);`
`229`	`229`	`$this->expectExceptionMessage('Parameter value "word" cannot be converted to "int".');`
`230`	`230`
`231`		`- $bag->getInteger('word');`
	`231`	`+ $bag->getInt('word', 0, true);`
`232`	`232`	`}`
`233`	`233`
`234`	`234`	`public function testGetString()`