symfony
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php‎
Lines changed: 4 additions & 2 deletions b/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_listeners.xml‎
Lines changed: 1 addition & 2 deletions b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_listeners.xml‎
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Symfony/Component/Security/Http/Firewall/LogoutListener.php‎
Lines changed: 9 additions & 9 deletions b/‎src/Symfony/Component/Security/Http/Firewall/LogoutListener.php‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎tests/Symfony/Tests/Component/Security/Http/Firewall/LogoutListenerTest.php‎
Lines changed: 195 additions & 0 deletions b/‎tests/Symfony/Tests/Component/Security/Http/Firewall/LogoutListenerTest.php‎
Lines changed: 195 additions & 0 deletions
@@ -276,8 +276,10 @@ private function createFirewall(ContainerBuilder $container, $id, $firewall, &$a
         if (isset($firewall['logout'])) {
             $listenerId = 'security.logout_listener.'.$id;
             $listener = $container->setDefinition($listenerId, new DefinitionDecorator('security.logout_listener'));
-            $listener->replaceArgument(2, $firewall['logout']['path']);
-            $listener->replaceArgument(3, $firewall['logout']['target']);
+            $listener->replaceArgument(2, array(
+                'logout_path' => $firewall['logout']['path'],
+                'target_url'  => $firewall['logout']['target'],
+            ));
             $listeners[] = new Reference($listenerId);
 
             // add logout success handler
 
@@ -78,8 +78,7 @@
         <service id="security.logout_listener" class="%security.logout_listener.class%" public="false" abstract="true">
             <argument type="service" id="security.context" />
             <argument type="service" id="security.http_utils" />
-            <argument /> <!-- Logout Path -->
-            <argument /> <!-- Target-URL Path -->
+            <argument /> <!-- Options -->
             <argument type="service" id="security.logout.success_handler" on-invalid="null" />
         </service>
         <service id="security.logout.handler.session" class="%security.logout.handler.session.class%" public="false" />
 
@@ -28,8 +28,7 @@
 class LogoutListener implements ListenerInterface
 {
     private $securityContext;
-    private $logoutPath;
-    private $targetUrl;
+    private $options;
     private $handlers;
     private $successHandler;
     private $httpUtils;
@@ -39,16 +38,17 @@ class LogoutListener implements ListenerInterface
      *
      * @param SecurityContextInterface      $securityContext
      * @param HttpUtils                     $httpUtils        An HttpUtilsInterface instance
-     * @param string                        $logoutPath       The path that starts the logout process
-     * @param string                        $targetUrl        The URL to redirect to after logout
+     * @param array                         $options          An array of options for the processing of a logout attempt
      * @param LogoutSuccessHandlerInterface $successHandler
      */
-    public function __construct(SecurityContextInterface $securityContext, HttpUtils $httpUtils, $logoutPath, $targetUrl = '/', LogoutSuccessHandlerInterface $successHandler = null)
+    public function __construct(SecurityContextInterface $securityContext, HttpUtils $httpUtils, array $options = array(), LogoutSuccessHandlerInterface $successHandler = null)
     {
         $this->securityContext = $securityContext;
         $this->httpUtils = $httpUtils;
-        $this->logoutPath = $logoutPath;
-        $this->targetUrl = $targetUrl;
+        $this->options = array_merge(array(
+            'logout_path' => '/logout',
+            'target_url'  => '/',
+        ), $options);
         $this->successHandler = $successHandler;
         $this->handlers = array();
     }
@@ -83,7 +83,7 @@ public function handle(GetResponseEvent $event)
                 throw new \RuntimeException('Logout Success Handler did not return a Response.');
             }
         } else {
-            $response = $this->httpUtils->createRedirectResponse($request, $this->targetUrl);
+            $response = $this->httpUtils->createRedirectResponse($request, $this->options['target_url']);
         }
 
         // handle multiple logout attempts gracefully
@@ -111,6 +111,6 @@ public function handle(GetResponseEvent $event)
      */
     protected function requiresLogout(Request $request)
     {
-        return $this->httpUtils->checkRequestPath($request, $this->logoutPath);
+        return $this->httpUtils->checkRequestPath($request, $this->options['logout_path']);
     }
 }
@@ -0,0 +1,195 @@
+<?php
+
+/*
+ * This file is part of the Symfony framework.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * This source file is subject to the MIT license that is bundled
+ * with this source code in the file LICENSE.
+ */
+
+namespace Symfony\Tests\Component\Security\Http\Firewall;
+
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Security\Http\Firewall\LogoutListener;
+
+class LogoutListenerTest extends \PHPUnit_Framework_TestCase
+{
+    public function testHandleUnmatchedPath()
+    {
+        list($listener, $context, $httpUtils, $options) = $this->getListener();
+
+        list($event, $request) = $this->getGetResponseEvent();
+
+        $event->expects($this->never())
+            ->method('setResponse');
+
+        $httpUtils->expects($this->once())
+            ->method('checkRequestPath')
+            ->with($request, $options['logout_path'])
+            ->will($this->returnValue(false));
+
+        $listener->handle($event);
+    }
+
+    public function testHandleMatchedPathWithSuccessHandler()
+    {
+        $successHandler = $this->getSuccessHandler();
+
+        list($listener, $context, $httpUtils, $options) = $this->getListener($successHandler);
+
+        list($event, $request) = $this->getGetResponseEvent();
+
+        $httpUtils->expects($this->once())
+            ->method('checkRequestPath')
+            ->with($request, $options['logout_path'])
+            ->will($this->returnValue(true));
+
+        $successHandler->expects($this->once())
+            ->method('onLogoutSuccess')
+            ->with($request)
+            ->will($this->returnValue($response = new Response()));
+
+        $context->expects($this->once())
+            ->method('getToken')
+            ->will($this->returnValue($token = $this->getToken()));
+
+        $handler = $this->getHandler();
+        $handler->expects($this->once())
+            ->method('logout')
+            ->with($request, $response, $token);
+
+        $context->expects($this->once())
+            ->method('setToken')
+            ->with(null);
+
+        $event->expects($this->once())
+            ->method('setResponse')
+            ->with($response);
+
+        $listener->addHandler($handler);
+
+        $listener->handle($event);
+    }
+
+    public function testHandleMatchedPathWithoutSuccessHandler()
+    {
+        list($listener, $context, $httpUtils, $options) = $this->getListener();
+
+        list($event, $request) = $this->getGetResponseEvent();
+
+        $httpUtils->expects($this->once())
+            ->method('checkRequestPath')
+            ->with($request, $options['logout_path'])
+            ->will($this->returnValue(true));
+
+        $httpUtils->expects($this->once())
+            ->method('createRedirectResponse')
+            ->with($request, $options['target_url'])
+            ->will($this->returnValue($response = new Response()));
+
+        $context->expects($this->once())
+            ->method('getToken')
+            ->will($this->returnValue($token = $this->getToken()));
+
+        $handler = $this->getHandler();
+        $handler->expects($this->once())
+            ->method('logout')
+            ->with($request, $response, $token);
+
+        $context->expects($this->once())
+            ->method('setToken')
+            ->with(null);
+
+        $event->expects($this->once())
+            ->method('setResponse')
+            ->with($response);
+
+        $listener->addHandler($handler);
+
+        $listener->handle($event);
+    }
+
+    /**
+     * @expectedException RuntimeException
+     */
+    public function testSuccessHandlerReturnsNonResponse()
+    {
+        $successHandler = $this->getSuccessHandler();
+
+        list($listener, $context, $httpUtils, $options) = $this->getListener($successHandler);
+
+        list($event, $request) = $this->getGetResponseEvent();
+
+        $httpUtils->expects($this->once())
+            ->method('checkRequestPath')
+            ->with($request, $options['logout_path'])
+            ->will($this->returnValue(true));
+
+        $successHandler->expects($this->once())
+            ->method('onLogoutSuccess')
+            ->with($request)
+            ->will($this->returnValue(null));
+
+        $listener->handle($event);
+    }
+
+    private function getContext()
+    {
+        return $this->getMockBuilder('Symfony\Component\Security\Core\SecurityContext')
+            ->disableOriginalConstructor()
+            ->getMock();
+    }
+
+    private function getGetResponseEvent()
+    {
+        $event = $this->getMockBuilder('Symfony\Component\HttpKernel\Event\GetResponseEvent')
+            ->disableOriginalConstructor()
+            ->getMock();
+
+        $event->expects($this->any())
+            ->method('getRequest')
+            ->will($this->returnValue($request = new Request()));
+
+        return array($event, $request);
+    }
+
+    private function getHandler()
+    {
+        return $this->getMock('Symfony\Component\Security\Http\Logout\LogoutHandlerInterface');
+    }
+
+    private function getHttpUtils()
+    {
+        return $this->getMockBuilder('Symfony\Component\Security\Http\HttpUtils')
+            ->disableOriginalConstructor()
+            ->getMock();
+    }
+
+    private function getListener($successHandler = null)
+    {
+        $listener = new LogoutListener(
+            $context = $this->getContext(),
+            $httpUtils = $this->getHttpUtils(),
+            $options = array(
+                'logout_path' => '/logout',
+                'target_url' => '/',
+            ),
+            $successHandler
+        );
+
+        return array($listener, $context, $httpUtils, $options);
+    }
+
+    private function getSuccessHandler()
+    {
+
return $this->getMock('Symfony\Component\Security\Http\Logout\LogoutSuccessHandlerInterface');        return $this->getMock('Symfony\Component\Security\Http\Logout\LogoutSuccessHandlerInterface');
+    }
+
+    private function getToken()
+    {
+        return $this->getMock('Symfony\Component\Security\Core\Authentication\Token\TokenInterface');
+    }
+}
Original file line number	Diff line number	Diff line change
`@@ -28,8 +28,7 @@`
`28`	`28`	`class LogoutListener implements ListenerInterface`
`29`	`29`	`{`
`30`	`30`	`private $securityContext;`
`31`		`- private $logoutPath;`
`32`		`- private $targetUrl;`
	`31`	`+ private $options;`
`33`	`32`	`private $handlers;`
`34`	`33`	`private $successHandler;`
`35`	`34`	`private $httpUtils;`
`@@ -39,16 +38,17 @@ class LogoutListener implements ListenerInterface`
`39`	`38`	`*`
`40`	`39`	`* @param SecurityContextInterface $securityContext`
`41`	`40`	`* @param HttpUtils $httpUtils An HttpUtilsInterface instance`
`42`		`- * @param string $logoutPath The path that starts the logout process`
`43`		`- * @param string $targetUrl The URL to redirect to after logout`
	`41`	`+ * @param array $options An array of options for the processing of a logout attempt`
`44`	`42`	`* @param LogoutSuccessHandlerInterface $successHandler`
`45`	`43`	`*/`
`46`		`- public function __construct(SecurityContextInterface $securityContext, HttpUtils $httpUtils, $logoutPath, $targetUrl = '/', LogoutSuccessHandlerInterface $successHandler = null)`
	`44`	`+ public function __construct(SecurityContextInterface $securityContext, HttpUtils $httpUtils, array $options = array(), LogoutSuccessHandlerInterface $successHandler = null)`
`47`	`45`	`{`
`48`	`46`	`$this->securityContext = $securityContext;`
`49`	`47`	`$this->httpUtils = $httpUtils;`
`50`		`- $this->logoutPath = $logoutPath;`
`51`		`- $this->targetUrl = $targetUrl;`
	`48`	`+ $this->options = array_merge(array(`
	`49`	`+ 'logout_path' => '/logout',`
	`50`	`+ 'target_url' => '/',`
	`51`	`+ ), $options);`
`52`	`52`	`$this->successHandler = $successHandler;`
`53`	`53`	`$this->handlers = array();`
`54`	`54`	`}`
`@@ -83,7 +83,7 @@ public function handle(GetResponseEvent $event)`
`83`	`83`	`throw new \RuntimeException('Logout Success Handler did not return a Response.');`
`84`	`84`	`}`
`85`	`85`	`} else {`
`86`		`- $response = $this->httpUtils->createRedirectResponse($request, $this->targetUrl);`
	`86`	`+ $response = $this->httpUtils->createRedirectResponse($request, $this->options['target_url']);`
`87`	`87`	`}`
`88`	`88`
`89`	`89`	`// handle multiple logout attempts gracefully`
`@@ -111,6 +111,6 @@ public function handle(GetResponseEvent $event)`
`111`	`111`	`*/`
`112`	`112`	`protected function requiresLogout(Request $request)`
`113`	`113`	`{`
`114`		`- return $this->httpUtils->checkRequestPath($request, $this->logoutPath);`
	`114`	`+ return $this->httpUtils->checkRequestPath($request, $this->options['logout_path']);`
`115`	`115`	`}`
`116`	`116`	`}`