Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Voters are incoming #20

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Voters are incoming #20

wants to merge 5 commits into from

Conversation

mike1796
Copy link
Member

@mike1796 mike1796 commented Aug 3, 2017

Migration and separation should be ok
Voter too
Still need to complete the EventSubscriber

@mike1796
Voters are incoming
cac6b0a 
Migration and separation should be ok
Voter too
Still need to complete the EventSubscriber
quentinus95
quentinus95 requested changes Aug 3, 2017
View reviewed changes
src/AppBundle/Entity/Profile.php Outdated
use Symfony\Component\Validator\Constraints as Assert;

/**
* User's account.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

profile

src/AppBundle/EventSubscriber/AccountChecker.php Outdated
$profile = $event->getControllerResult();
$method = $event->getRequest()->getMethod();

if (!$profile instanceof Profile || Request::METHOD_POST !== $method) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why is access only checked for POST requests ?

src/AppBundle/Security/AccountVoter.php Outdated
{
$user = $token->getUser();

if (!$user instanceof Profile) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe we should rename profile to UserProfile to get things easier to understand.

src/AppBundle/Security/AccountVoter.php Outdated
return $this->canAccess($profile, $user);
}

throw new \LogicException('This code should not be reached!');
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

'Attribute not supported'

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@quentinus95 quentinus95 quentinus95 requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mike1796 @quentinus95