symfony
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Controller/AbstractController.php‎
Lines changed: 8 additions & 16 deletions b/‎src/Symfony/Bundle/FrameworkBundle/Controller/AbstractController.php‎
Lines changed: 8 additions & 16 deletions
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Tests/Controller/AbstractControllerTest.php‎
Lines changed: 38 additions & 1 deletion b/‎src/Symfony/Bundle/FrameworkBundle/Tests/Controller/AbstractControllerTest.php‎
Lines changed: 38 additions & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DataCollector/SecurityDataCollector.php‎
Lines changed: 9 additions & 1 deletion b/‎src/Symfony/Bundle/SecurityBundle/DataCollector/SecurityDataCollector.php‎
Lines changed: 9 additions & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php‎
Lines changed: 0 additions & 3 deletions b/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php‎
Lines changed: 0 additions & 2 deletions b/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/EventListener/VoteListener.php‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/SecurityBundle/EventListener/VoteListener.php‎
Lines changed: 1 addition & 1 deletion
@@ -37,7 +37,6 @@
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Authorization\AccessDecision;
 use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
-use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
 use Symfony\Component\Security\Core\Exception\AccessDeniedException;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Csrf\CsrfToken;
@@ -205,17 +204,20 @@ protected function isGranted(mixed $attribute, mixed $subject = null): bool
     }
 
     /**
-     * Checks decision of the attribute against the current authentication token and optionally supplied subject.
+     * Checks if the attribute is granted against the current authentication token and optionally supplied subject.
      *
      * @throws \LogicException
      */
-    protected function getDecision(mixed $attribute, mixed $subject = null): AccessDecision
+    protected function getAccessDecision(mixed $attribute, mixed $subject = null): AccessDecision
     {
         if (!$this->container->has('security.authorization_checker')) {
             throw new \LogicException('The SecurityBundle is not registered in your application. Try running "composer require symfony/security-bundle".');
         }
 
-        return $
4AEA
this->container->get('security.authorization_checker')->getDecision($attribute, $subject);
+        $accessDecision = null;
+        $decision = $this->container->get('security.authorization_checker')->isGranted($attribute, $subject, $accessDecision);
+
+        return null === $accessDecision ? new AccessDecision($decision) : $accessDecision;
     }
 
     /**
@@ -226,23 +228,13 @@ protected function getDecision(mixed $attribute, mixed $subject = null): AccessD
      */
     protected function denyAccessUnlessGranted(mixed $attribute, mixed $subject = null, string $message = 'Access Denied.'): void
     {
-        if (!$this->container->has('security.authorization_checker')) {
-            throw new \LogicException('The SecurityBundle is not registered in your application. Try running "composer require symfony/security-bundle".');
-        }
-
-        $checker = $this->container->get('security.authorization_checker');
-        if (method_exists($checker, 'getDecision')) {
-            $decision = $checker->getDecision($attribute, $subject);
-        } else {
-            $decision = new AccessDecision($checker->isGranted($attribute, $subject) ? VoterInterface::ACCESS_GRANTED : VoterInterface::ACCESS_DENIED);
-        }
+        $decision = $this->getAccessDecision($attribute, $subject);
 
-        if (!$decision->isGranted()) {
+        if ($decision->isDenied()) {
             $exception = $this->createAccessDeniedException($message);
             $exception->setAttributes([$attribute]);
             $exception->setSubject($subject);
             $exception->setAccessDecision($decision);
-
             throw $exception;
         }
     }
 
@@ -40,7 +40,9 @@
 use Symfony\Component\Routing\RouterInterface;
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage;
 use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
+use Symfony\Component\Security\Core\Authorization\AccessDecision;
 use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Vote;
 use Symfony\Component\Security\Core\Exception\AccessDeniedException;
 use Symfony\Component\Security\Core\User\InMemoryUser;
 use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
@@ -362,7 +364,14 @@ public function testdenyAccessUnlessGranted()
 
         $this->expectException(AccessDeniedException::class);
 
-        $controller->denyAccessUnlessGranted('foo');
+        try {
+            $controller->denyAccessUnlessGranted('foo');
+        } catch (AccessDeniedException $exception) {
+            $this->assertFalse($exception->getAccessDecision()->getAccess());
+            $this->assertEmpty($exception->getAccessDecision()->getVotes());
+            $this->assertEmpty($exception->getAccessDecision()->getMessage());
+            throw $exception;
+        }
     }
 
     /**
@@ -644,4 +653,32 @@ public function testSendEarlyHints()
 
         $this->assertSame('</style.css>; rel="preload"; as="stylesheet",</script.js>; rel="preload"; as="script"', $response->headers->get('Link'));
     }
+
+    public function testdenyAccessUnlessGrantedWithAccessDecisionObject()
+    {
+        $authorizationChecker = new class implements AuthorizationCheckerInterface {
+            public function isGranted(mixed $attribute, mixed $subject = null, ?AccessDecision &$accessDecision = null): bool
+            {
+                $accessDecision = new AccessDecision(false, [new Vote(-1)], 'access denied');
+                return $accessDecision->getAccess();
+            }
+        };
+
+        $container = new Container();
+        $container->set('security.authorization_checker', $authorizationChecker);
+
+        $controller = $this->createController();
+        $controller->setContainer($container);
+
+        $this->expectException(AccessDeniedException::class);
+
+        try {
+            $controller->denyAccessUnlessGranted('foo');
+        } catch (AccessDeniedException $exception) {
+            $this->assertFalse($exception->getAccessDecision()->getAccess());
+            $this->assertCount(1, $exception->getAccessDecision()->getVotes());
+            $this->assertSame('access denied', $exception->getAccessDecision()->getMessage());
+            throw $exception;
+        }
+    }
 }
@@ -20,9 +20,12 @@
 use Symfony\Component\HttpKernel\DataCollector\LateDataCollectorInterface;
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 use Symfony\Component\Security\Core\Authentication\Token\SwitchUserToken;
+use Symfony\Component\Security\Core\Authorization\AccessDecision;
 use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
 use Symfony\Component\Security\Core\Authorization\TraceableAccessDecisionManager;
 use Symfony\Component\Security\Core\Authorization\Voter\TraceableVoter;
+use Symfony\Component\Security\Core\Authorization\Voter\Vote;
+use Symfony\Component\Security\Core\Authorization\Voter\VoteInterface;
 use Symfony\Component\Security\Core\Role\RoleHierarchyInterface;
 use Symfony\Component\Security\Http\Firewall\SwitchUserListener;
 use Symfony\Component\Security\Http\FirewallMapInterface;
@@ -138,6 +141,7 @@ public function collect(Request $request, Response $response, ?\Throwable $excep
 
             // collect voter details
             $decisionLog = $this->accessDecisionManager->getDecisionLog();
+
             foreach ($decisionLog as $key => $log) {
                 $decisionLog[$key]['voter_details'] = [];
                 foreach ($log['voterDetails'] as $voterDetail) {
@@ -146,10 +150,14 @@ public function collect(Request $request, Response $response, ?\Throwable $excep
                     $decisionLog[$key]['voter_details'][] = [
                         'class' => $classData,
                         'attributes' => $voterDetail['attributes'], // Only displayed for unanimous strategy
-                        'vote' => $voterDetail['vote'],
+                        'vote' => $voterDetail['vote'] instanceof VoteInterface ? $voterDetail['vote'] : new Vote($voterDetail['vote']),
                     ];
                 }
                 unset($decisionLog[$key]['voterDetails']);
+
+                if (!$decisionLog[$key]['result'] instanceof AccessDecision) {
+                    $decisionLog[$key]['result'] = new AccessDecision($decisionLog[$key]['result']);
+                }
             }
 
             $this->data['access_decision_log'] = $decisionLog;
 
@@ -36,8 +36,6 @@ class MainConfiguration implements ConfigurationInterface
     public const STRATEGY_UNANIMOUS = 'unanimous';
     /** @internal */
     public const STRATEGY_PRIORITY = 'priority';
-    /** @internal */
-    public const STRATEGY_SCORING = 'scoring';
 
     /**
      * @param array<AuthenticatorFactoryInterface> $factories
@@ -475,7 +473,6 @@ private function getAccessDecisionStrategies(): array
             self::STRATEGY_CONSENSUS,
             self::STRATEGY_UNANIMOUS,
             self::STRATEGY_PRIORITY,
-            self::STRATEGY_SCORING,
         ];
     }
 }
@@ -52,7 +52,6 @@
 use Symfony\Component\Security\Core\Authorization\Strategy\AffirmativeStrategy;
 use Symfony\Component\Security\Core\Authorization\Strategy\ConsensusStrategy;
 use Symfony\Component\Security\Core\Authorization\Strategy\PriorityStrategy;
-use Symfony\Component\Security\Core\Authorization\Strategy\ScoringStrategy;
 use Symfony\Component\Security\Core\Authorization\Strategy\UnanimousStrategy;
 use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
 use Symfony\Component\Security\Core\User\ChainUserChecker;
@@ -195,7 +194,6 @@ private function createStrategyDefinition(string $strategy, bool $allowIfAllAbst
             MainConfiguration::STRATEGY_CONSENSUS => new Definition(ConsensusStrategy::class, [$allowIfAllAbstainDecisions, $allowIfEqualGrantedDeniedDecisions]),
             MainConfiguration::STRATEGY_UNANIMOUS => new Definition(UnanimousStrategy::class, [$allowIfAllAbstainDecisions]),
             MainConfiguration::STRATEGY_PRIORITY => new Definition(PriorityStrategy::class, [$allowIfAllAbstainDecisions]),
-            MainConfiguration::STRATEGY_SCORING => new Definition(ScoringStrategy::class, [$allowIfAllAbstainDecisions]),
             default => throw new InvalidConfigurationException(\sprintf('The strategy "%s" is not supported.', $strategy)),
         };
     }
 
@@ -31,7 +31,7 @@ public function __construct(
 
     public function onVoterVote(VoteEvent $event): void
     {
-        $this->traceableAccessDecisionManager->addVoterVote($event->getVoter(), $event->getAttributes(), $event->getVoteObject());
+        $this->traceableAccessDecisionManager->addVoterVote($event->getVoter(), $event->getAttributes(), $event->getVote(true));
     }
 
     public static function getSubscribedEvents(): array
Original file line number	Diff line number	Diff line change
`@@ -31,7 +31,7 @@ public function __construct(`
`31`	`31`
`32`	`32`	`public function onVoterVote(VoteEvent $event): void`
`33`	`33`	`{`
`34`		`- $this->traceableAccessDecisionManager->addVoterVote($event->getVoter(), $event->getAttributes(), $event->getVoteObject());`
	`34`	`+ $this->traceableAccessDecisionManager->addVoterVote($event->getVoter(), $event->getAttributes(), $event->getVote(true));`
`35`	`35`	`}`
`36`	`36`
`37`	`37`	`public static function getSubscribedEvents(): array`