symfony
diff --git a/‎src/Symfony/Bridge/Twig/Extension/SecurityExtension.php‎
Lines changed: 11 additions & 5 deletions b/‎src/Symfony/Bridge/Twig/Extension/SecurityExtension.php‎
Lines changed: 11 additions & 5 deletions
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/form_csrf.xml‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/form_csrf.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/templating_php.xml‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/templating_php.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_listeners.xml‎
Lines changed: 12 additions & 12 deletions b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_listeners.xml‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_rememberme.xml‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_rememberme.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/templating_php.xml‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/templating_php.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/templating_twig.xml‎
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/templating_twig.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Templating/Helper/SecurityHelper.php‎
Lines changed: 9 additions & 8 deletions b/‎src/Symfony/Bundle/SecurityBundle/Templating/Helper/SecurityHelper.php‎
Lines changed: 9 additions & 8 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/DataCollector/SecurityDataCollectorTest.php‎
Lines changed: 16 additions & 7 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/DataCollector/SecurityDataCollectorTest.php‎
Lines changed: 16 additions & 7 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/Functional/Bundle/FormLoginBundle/Controller/LocalizedController.php‎
Lines changed: 5 additions & 5 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/Functional/Bundle/FormLoginBundle/Controller/LocalizedController.php‎
Lines changed: 5 additions & 5 deletions
@@ -13,6 +13,7 @@
 
 use Symfony\Component\Security\Acl\Voter\FieldVote;
 use Symfony\Component\Security\Core\SecurityContextInterface;
+use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 
 /**
  * SecurityExtension exposes security context features.
@@ -21,24 +22,29 @@
  */
 class SecurityExtension extends \Twig_Extension
 {
-    private $context;
+    private $securityChecker;
 
-    public function __construct(SecurityContextInterface $context = null)
+    /**
+     * @param SecurityContextInterface|AuthorizationCheckerInterface
+     *
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
+     */
+    public function __construct($securityChecker = null)
     {
-        $this->context = $context;
+        $this->securityChecker = $securityChecker;
     }
 
     public function isGranted($role, $object = null, $field = null)
     {
-        if (null === $this->context) {
+        if (null === $this->securityChecker) {
             return false;
         }
 
         if (null !== $field) {
             $object = new FieldVote($object, $field);
         }
 
-        return $this->context->isGranted($role, $object);
+        return $this->securityChecker->isGranted($role, $object);
     }
 
     /**
 
@@ -11,7 +11,7 @@
 
         <service id="form.type_extension.csrf" class="Symfony\Component\Form\Extension\Csrf\Type\FormTypeCsrfExtension">
             <tag name="form.type_extension" alias="form" />
-            <argument type="service" id="form.csrf_provider" />
+            <argument type="service" id="security.csrf.token_manager" />
             <argument>%form.type_extension.csrf.field_name%</argument>
             <argument type="service" id="translator.default" />
 
@@ -115,7 +115,7 @@
 
         <service id="templating.form.renderer" class="%templating.form.renderer.class%" public="false">
             <argument type="service" id="templating.form.engine" />
-            <argument type="service" id="form.csrf_provider" on-invalid="null" />
+            <argument type="service" id="security.csrf.token_manager" on-invalid="null" />
         </service>
 
         <service id="templating.globals" class="%templating.globals.class%">
 
@@ -52,7 +52,7 @@
     <services>
         <service id="security.authentication.listener.anonymous" class="%security.authentication.listener.anonymous.class%" public="false">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument /> <!-- Key -->
             <argument type="service" id="logger" on-invalid="null" />
             <argument type="service" id="security.authentication.manager" />
@@ -82,15 +82,15 @@
 
         <service id="security.context_listener" class="%security.context_listener.class%" public="false">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="collection"></argument>
             <argument /> <!-- Provider Key -->
             <argument type="service" id="logger" on-invalid="null" />
             <argument type="service" id="event_dispatcher" on-invalid="null"/>
         </service>
 
         <service id="security.logout_listener" class="%security.logout_listener.class%" public="false" abstract="true">
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.http_utils" />
             <argument type="service" id="security.logout.success_handler" />
             <argument /> <!-- Options -->
@@ -109,7 +109,7 @@
 
         <service id="security.authentication.listener.abstract" abstract="true" public="false">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.manager" />
             <argument type="service" id="security.authentication.session_strategy" />
             <argument type="service" id="security.http_utils" />
@@ -167,7 +167,7 @@
 
         <service id="security.authentication.listener.simple_preauth" class="%security.authentication.listener.simple_preauth.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.manager" />
             <argument /> <!-- Provider-shared Key -->
             <argument /> <!-- Authenticator -->
@@ -177,7 +177,7 @@
 
         <service id="security.authentication.listener.x509" class="%security.authentication.listener.x509.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.manager" />
             <argument /> <!-- Provider-shared Key -->
             <argument /> <!-- x509 user -->
@@ -188,7 +188,7 @@
 
         <service id="security.authentication.listener.remote_user" class="Symfony\Component\Security\Http\Firewall\RemoteUserAuthenticationListener" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.manager" />
             <argument /> <!-- Provider-shared Key -->
             <argument /> <!-- REMOTE_USER server env var -->
@@ 
3844
-198,7 +198,7 @@
 
         <service id="security.authentication.listener.basic" class="%security.authentication.listener.basic.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.manager" />
             <argument /> <!-- Provider-shared Key -->
             <argument /> <!-- Entry Point -->
@@ -207,7 +207,7 @@
 
         <service id="security.authentication.listener.digest" class="%security.authentication.listener.digest.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument /> <!-- User Provider -->
             <argument /> <!-- Provider-shared Key -->
             <argument /> <!-- Entry Point -->
@@ -235,7 +235,7 @@
 
         <service id="security.exception_listener" class="%security.exception_listener.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.trust_resolver" />
             <argument type="service" id="security.http_utils" />
             <argument />
@@ -247,7 +247,7 @@
 
         <service id="security.authentication.switchuser_listener" class="%security.authentication.switchuser_listener.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument /> <!-- User Provider -->
             <argument type="service" id="security.user_checker" />
             <argument /> <!--  Provider Key -->
@@ -260,7 +260,7 @@
 
         <service id="security.access_listener" class="%security.access_listener.class%" public="false">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.access.decision_manager" />
             <argument type="service" id="security.access_map" />
             <argument type="service" id="security.authentication.manager" />
 
@@ -19,7 +19,7 @@
     <services>
         <service id="security.authentication.listener.rememberme" class="%security.authentication.listener.rememberme.class%" public="false" abstract="true">
             <tag name="monolog.logger" channel="security" />
-            <argument type="service" id="security.context" />
+            <argument type="service" id="security.token_storage" />
             <argument type="service" id="security.authentication.rememberme" />
             <argument type="service" id="security.authentication.manager" />
             <argument type="service" id="logger" on-invalid="null" />
 
@@ -18,7 +18,7 @@
 
         <service id="templating.helper.security" class="%templating.helper.security.class%">
             <tag name="templating.helper" alias="security" />
-            <argument type="service" id="security.context" on-invalid="ignore" />
+            <argument type="service" id="security.authorization_checker" on-invalid="ignore" />
         </service>
     </services>
 </container>
@@ -17,7 +17,7 @@
 
         <service id="twig.extension.security" class="%twig.extension.security.class%" public="false">
             <tag name="twig.extension" />
-            <argument type="service" id="security.context" on-invalid="ignore" />
+            <argument type="service" id="security.authorization_checker" on-invalid="ignore" />
         </service>
     </services>
 </container>
@@ -14,37 +14,38 @@
 use Symfony\Component\Security\Acl\Voter\FieldVote;
 use Symfony\Component\Templating\Helper\Helper;
 use Symfony\Component\Security\Core\SecurityContextInterface;
+use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 
 /**
- * SecurityHelper provides read-only access to the security context.
+ * SecurityHelper provides read-only access to the security checker.
  *
  * @author Fabien Potencier <fabien@symfony.com>
  */
 class SecurityHelper extends Helper
 {
-    private $context;
+    private $securityChecker;
 
     /**
-     * Constructor.
+     * @param SecurityContextInterface|AuthorizationCheckerInterface
      *
-     * @param SecurityContextInterface $context A SecurityContext instance
+     * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0
      */
-    public function __construct(SecurityContextInterface $context = null)
+    public function __construct($securityChecker = null)
     {
-        $this->context = $context;
+        $this->securityChecker = $securityChecker;
     }
 
     public function isGranted($role, $object = null, $field = null)
     {
-        if (null === $this->context) {
+        if (null === $this->securityChecker) {
             return false;
         }
 
         if (null !== $field) {
             $object = new FieldVote($object, $field);
         }
 
-        return $this->context->isGranted($role, $object);
+        return $this->securityChecker->isGranted($role, $object);
     }
 
     /**
 
@@ -25,9 +25,9 @@ public function testCollectWhenSecurityIsDisabled()
         $this->assertEmpty($collector->getUser());
     }
 
-    /** @dataProvider provideTokenStorage */
-    public function testCollectWhenAuthenticationTokenIsNull($tokenStorage)
+    public function testCollectWhenAuthenticationTokenIsNull()
     {
+        $tokenStorage = new TokenStorage();
         $collector = new SecurityDataCollector($tokenStorage, $this->getRoleHierarchy());
         $collector->collect($this->getRequest(), $this->getResponse());
 
@@ -40,12 +40,21 @@ public function testCollectWhenAuthenticationTokenIsNull($tokenStorage)
         $this->assertEmpty($collector->getUser());
     }
 
-    public function provideTokenStorage()
+    public function testLegacyCollectWhenAuthenticationTokenIsNull()
     {
-        return array(
-            array(new TokenStorage()),
-            array($this->getMock('Symfony\Component\Security\Core\SecurityContextInterface')),
-        );
+        $this->iniSet('error_reporting', -1 & ~E_USER_DEPRECATED);
+
+        $tokenStorage = $this->getMock('Symfony\Component\Security\Core\SecurityContextInterface');
+        $collector = new SecurityDataCollector($tokenStorage, $this->getRoleHierarchy());
+        $collector->collect($this->getRequest(), $this->getResponse());
+
+        $this->assertTrue($collector->isEnabled());
+        $this->assertFalse($collector->isAuthenticated());
+        $this->assertNull($collector->getTokenClass());
+        $this->assertTrue($collector->supportsRoleHierarchy());
+        $this->assertCount(0, $collector->getRoles());
+        $this->assertCount(0, $collector->getInheritedRoles());
+        $this->assertEmpty($collector->getUser());
     }
 
     /** @dataProvider provideRoles */
 
@@ -11,7 +11,7 @@
 
 namespace Symfony\Bundle\SecurityBundle\Tests\Functional\Bundle\FormLoginBundle\Controller;
 
-use Symfony\Component\Security\Core\SecurityContext;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\DependencyInjection\ContainerAware;
@@ -21,15 +21,15 @@ class LocalizedController extends ContainerAware
     public function loginAction(Request $request)
     {
         // get the login error if there is one
-        if ($request->attributes->has(SecurityContext::AUTHENTICATION_ERROR)) {
-            $error = $request->attributes->get(SecurityContext::AUTHENTICATION_ERROR);
+        if ($request->attributes->has(Security::AUTHENTICATION_ERROR)) {
+            $error = $request->attributes->get(Security::AUTHENTICATION_ERROR);
         } else {
-            $error = $request->getSession()->get(SecurityContext::AUTHENTICATION_ERROR);
+            $error = $request->getSession()->get(Security::AUTHENTICATION_ERROR);
         }
 
         return $this->container->get('templating')->renderResponse('FormLoginBundle:Localized:login.html.twig', array(
             // last username entered by the user
-            'last_username' => $request->getSession()->get(SecurityContext::LAST_USERNAME),
+            'last_username' => $request->getSession()->get(Security::LAST_USERNAME),
             'error' => $error,
         ));
     }
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@`
`13`	`13`
`14`	`14`	`use Symfony\Component\Security\Acl\Voter\FieldVote;`
`15`	`15`	`use Symfony\Component\Security\Core\SecurityContextInterface;`
	`16`	`+use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;`
`16`	`17`
`17`	`18`	`/**`
`18`	`19`	`* SecurityExtension exposes security context features.`
`@@ -21,24 +22,29 @@`
`21`	`22`	`*/`
`22`	`23`	`class SecurityExtension extends \Twig_Extension`
`23`	`24`	`{`
`24`		`- private $context;`
	`25`	`+ private $securityChecker;`
`25`	`26`
`26`		`- public function __construct(SecurityContextInterface $context = null)`
	`27`	`+ /**`
	`28`	`+ * @param SecurityContextInterface\|AuthorizationCheckerInterface`
	`29`	`+ *`
	`30`	`+ * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0`
	`31`	`+ */`
	`32`	`+ public function __construct($securityChecker = null)`
`27`	`33`	`{`
`28`		`- $this->context = $context;`
	`34`	`+ $this->securityChecker = $securityChecker;`
`29`	`35`	`}`
`30`	`36`
`31`	`37`	`public function isGranted($role, $object = null, $field = null)`
`32`	`38`	`{`
`33`		`- if (null === $this->context) {`
	`39`	`+ if (null === $this->securityChecker) {`
`34`	`40`	`return false;`
`35`	`41`	`}`
`36`	`42`
`37`	`43`	`if (null !== $field) {`
`38`	`44`	`$object = new FieldVote($object, $field);`
`39`	`45`	`}`
`40`	`46`
`41`		`- return $this->context->isGranted($role, $object);`
	`47`	`+ return $this->securityChecker->isGranted($role, $object);`
`42`	`48`	`}`
`43`	`49`
`44`	`50`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -14,37 +14,38 @@`
`14`	`14`	`use Symfony\Component\Security\Acl\Voter\FieldVote;`
`15`	`15`	`use Symfony\Component\Templating\Helper\Helper;`
`16`	`16`	`use Symfony\Component\Security\Core\SecurityContextInterface;`
	`17`	`+use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;`
`17`	`18`
`18`	`19`	`/**`
`19`		`- * SecurityHelper provides read-only access to the security context.`
	`20`	`+ * SecurityHelper provides read-only access to the security checker.`
`20`	`21`	`*`
`21`	`22`	`* @author Fabien Potencier <fabien@symfony.com>`
`22`	`23`	`*/`
`23`	`24`	`class SecurityHelper extends Helper`
`24`	`25`	`{`
`25`		`- private $context;`
	`26`	`+ private $securityChecker;`
`26`	`27`
`27`	`28`	`/**`
`28`		`- * Constructor.`
	`29`	`+ * @param SecurityContextInterface\|AuthorizationCheckerInterface`
`29`	`30`	`*`
`30`		`- * @param SecurityContextInterface $context A SecurityContext instance`
	`31`	`+ * Passing a SecurityContextInterface as a first argument was deprecated in 2.7 and will be removed in 3.0`
`31`	`32`	`*/`
`32`		`- public function __construct(SecurityContextInterface $context = null)`
	`33`	`+ public function __construct($securityChecker = null)`
`33`	`34`	`{`
`34`		`- $this->context = $context;`
	`35`	`+ $this->securityChecker = $securityChecker;`
`35`	`36`	`}`
`36`	`37`
`37`	`38`	`public function isGranted($role, $object = null, $field = null)`
`38`	`39`	`{`
`39`		`- if (null === $this->context) {`
	`40`	`+ if (null === $this->securityChecker) {`
`40`	`41`	`return false;`
`41`	`42`	`}`
`42`	`43`
`43`	`44`	`if (null !== $field) {`
`44`	`45`	`$object = new FieldVote($object, $field);`
`45`	`46`	`}`
`46`	`47`
`47`		`- return $this->context->isGranted($role, $object);`
	`48`	`+ return $this->securityChecker->isGranted($role, $object);`
`48`	`49`	`}`
`49`	`50`
`50`	`51`	`/**`