bug #38869 [SecurityBundle] inject only compatible token storage implementations for usage tracking (xabbuh)

wouterj · wouterj · commit d71c404a9fb5 · 2020-10-31T13:26:36.000+01:00
This PR was merged into the 4.4 branch. Discussion ---------- [SecurityBundle] inject only compatible token storage implementations for usage tracking | Q | A | ------------- | --- | Branch? | 4.4 | Bug fix? | yes | New feature? | no | Deprecations? | no | Tickets | Fix #36720 | License | MIT | Doc PR | Commits ------- d915e44 inject only compatible token storage implementations for usage tracking
diff --git a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Compiler/RegisterTokenUsageTrackingPass.php b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Compiler/RegisterTokenUsageTrackingPass.php
@@ -45,8 +45,12 @@ public function process(ContainerBuilder $container)
             $container->setAlias('security.token_storage', 'security.untracked_token_storage')->setPublic(true);
             $container->getDefinition('security.untracked_token_storage')->addTag('kernel.reset', ['method' => 'reset']);
         } elseif ($container->hasDefinition('security.context_listener')) {
-            $container->getDefinition('security.context_listener')
-                ->setArgument(6, [new Reference('security.token_storage'), 'enableUsageTracking']);
+            $tokenStorageClass = $container->getParameterBag()->resolveValue($container->findDefinition('security.token_storage')->getClass());
+
+            if (method_exists($tokenStorageClass, 'enableUsageTracking')) {
+                $container->getDefinition('security.context_listener')
+                    ->setArgument(6, [new Reference('security.token_storage'), 'enableUsageTracking']);
+            }
         }
     }
 }
diff --git a/src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Compiler/RegisterTokenUsageTrackingPassTest.php b/src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Compiler/RegisterTokenUsageTrackingPassTest.php
@@ -0,0 +1,89 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Bundle\SecurityBundle\Tests\DependencyInjection\Compiler;
+
+use PHPUnit\Framework\TestCase;
+use Symfony\Bundle\SecurityBundle\DependencyInjection\Compiler\RegisterTokenUsageTrackingPass;
+use Symfony\Component\DependencyInjection\Alias;
+use Symfony\Component\DependencyInjection\ContainerBuilder;
+use Symfony\Component\DependencyInjection\ContainerInterface;
+use Symfony\Component\DependencyInjection\Reference;
+use Symfony\Component\HttpFoundation\Session\Session;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage;
+use Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage;
+use Symfony\Component\Security\Http\Firewall\ContextListener;
+
+class RegisterTokenUsageTrackingPassTest extends TestCase
+{
+    public function testTokenStorageIsUntrackedIfSessionIsMissing()
+    {
+        $container = new ContainerBuilder();
+        $container->register('security.untracked_token_storage', TokenStorage::class);
+
+        $compilerPass = new RegisterTokenUsageTrackingPass();
+        $compilerPass->process($container);
+
+        $this->assertTrue($container->hasAlias('security.token_storage'));
+        $this->assertEquals(new Alias('security.untracked_token_storage', true), $container->getAlias('security.token_storage'));
+    }
+
+    public function testContextListenerIsNotModifiedIfTokenStorageDoesNotSupportUsageTracking()
+    {
+        $container = new ContainerBuilder();
+
+        $container->setParameter('security.token_storage.class', TokenStorage::class);
+        $container->register('session', Session::class);
+        $container->register('security.context_listener', ContextListener::class)
+            ->setArguments([
+                new Reference('security.untracked_token_storage'),
+                [],
+                'main',
+                new Reference('logger', ContainerInterface::NULL_ON_INVALID_REFERENCE),
+                new Reference('event_dispatcher', ContainerInterface::NULL_ON_INVALID_REFERENCE),
+                new Reference('security.authentication.trust_resolver'),
+            ]);
+        $container->register('security.token_storage', '%security.token_storage.class%');
+        $container->register('security.untracked_token_storage', TokenStorage::class);
+
+        $compilerPass = new RegisterTokenUsageTrackingPass();
+        $compilerPass->process($container);
+
+        $this->assertCount(6, $container->getDefinition('security.context_listener')->getArguments());
+    }
+
+    public function testContextListenerEnablesUsageTrackingIfSupportedByTokenStorage()
+    {
+        $container = new ContainerBuilder();
+
+        $container->setParameter('security.token_storage.class', UsageTrackingTokenStorage::class);
+        $container->register('session', Session::class);
+        $container->register('security.context_listener', ContextListener::class)
+            ->setArguments([
+                new Reference('security.untracked_token_storage'),
+                [],
+                'main',
+                new Reference('logger', ContainerInterface::NULL_ON_INVALID_REFERENCE),
+                new Reference('event_dispatcher', ContainerInterface::NULL_ON_INVALID_REFERENCE),
+                new Reference('security.authentication.trust_resolver'),
+            ]);
+        $container->register('security.token_storage', '%security.token_storage.class%');
+        $container->register('security.untracked_token_storage', TokenStorage::class);
+
+        $compilerPass = new RegisterTokenUsageTrackingPass();
+        $compilerPass->process($container);
+
+        $contextListener = $container->getDefinition('security.context_listener');
+
+        $this->assertCount(7, $container->getDefinition('security.context_listener')->getArguments());
+        $this->assertEquals([new Reference('security.token_storage'), 'enableUsageTracking'], $contextListener->getArgument(6));
+    }
+}

Original file line number	Diff line number	Diff line change
`@@ -45,8 +45,12 @@ public function process(ContainerBuilder $container)`
`45`	`45`	`$container->setAlias('security.token_storage', 'security.untracked_token_storage')->setPublic(true);`
`46`	`46`	`$container->getDefinition('security.untracked_token_storage')->addTag('kernel.reset', ['method' => 'reset']);`
`47`	`47`	`} elseif ($container->hasDefinition('security.context_listener')) {`
`48`		`- $container->getDefinition('security.context_listener')`
`49`		`- ->setArgument(6, [new Reference('security.token_storage'), 'enableUsageTracking']);`
	`48`	`+ $tokenStorageClass = $container->getParameterBag()->resolveValue($container->findDefinition('security.token_storage')->getClass());`
	`49`	`+`
	`50`	`+ if (method_exists($tokenStorageClass, 'enableUsageTracking')) {`
	`51`	`+ $container->getDefinition('security.context_listener')`
	`52`	`+ ->setArgument(6, [new Reference('security.token_storage'), 'enableUsageTracking']);`
	`53`	`+ }`
`50`	`54`	`}`
`51`	`55`	`}`
`52`	`56`	`}`