[SecurityBundle] UserPasswordEncoderCommand: Let the bcrypt encoder g…

…enerate its built-in salt
symfony · ogizanagi · Mar 24, 2015 · Mar 26, 2015 · Mar 24, 2015 · Mar 26, 2015
commit 289de2faf86b331f02319f2bd59af2a84570c7cd
diff --git a/src/Symfony/Bundle/SecurityBundle/Command/UserPasswordEncoderCommand.php b/src/Symfony/Bundle/SecurityBundle/Command/UserPasswordEncoderCommand.php
@@ -19,6 +19,7 @@
 use Symfony\Component\Console\Output\OutputInterface;
 use Symfony\Component\Console\Question\ConfirmationQuestion;
 use Symfony\Component\Console\Question\Question;
+use Symfony\Component\Security\Core\Encoder\BCryptPasswordEncoder;
 
 /**
  * Encode a user's password.
@@ -87,8 +88,9 @@ protected function execute(InputInterface $input, OutputInterface $output)
         $this->writeIntroduction($output);
 
         $password = $input->getArgument('password');
-        $emptySalt = $input->getOption('empty-salt');
         $userClass = $input->getArgument('user-class');
+        $encoder = $this->getContainer()->get('security.encoder_factory')->getEncoder($userClass);
+        $emptySalt = $input->getOption('empty-salt') || $encoder instanceof BCryptPasswordEncoder;
 
         $helper = $this->getHelper('question');
 
@@ -112,7 +114,6 @@ protected function execute(InputInterface $input, OutputInterface $output)
             $salt = $this->generateSalt();
         }
 
-        $encoder = $this->getContainer()->get('security.encoder_factory')->getEncoder($userClass);
         $encodedPassword = $encoder->encodePassword($password, $salt);
 
         $this->writeResult($output);

diff --git a/src/Symfony/Bundle/SecurityBundle/Tests/Functional/UserPasswordEncoderCommandTest.php b/src/Symfony/Bundle/SecurityBundle/Tests/Functional/UserPasswordEncoderCommandTest.php
@@ -113,6 +113,19 @@ public function testEncodePasswordEmptySaltOutput()
         $this->assertNotContains('| Generated salt   |', $this->passwordEncoderCommandTester->getDisplay());
     }
 
+    public function testEncodePasswordBcryptOutput()
+    {
+        $this->passwordEncoderCommandTester->execute(
+            array(
+                'command' => 'security:encode-password',
+                'password' => 'p@ssw0rd',
+                'user-class' => 'Custom\Class\Bcrypt\User',
+            )
+        );
+
+        $this->assertNotContains('| Generated salt   |', $this->passwordEncoderCommandTester->getDisplay());
+    }
+
     public function testEncodePasswordNoConfigForGivenUserClass()
     {
         $this->setExpectedException('\RuntimeException', 'No encoder has been configured for account "Foo\Bar\User".');