13925245599

Committed 18 Mar 2025 02:06PM UTC coverage: 61.074% (-0.9%) from 61.973%

Build # 13925245599

Build Type

Pull #7031

github

Committed by

web-flow

Commit Message

Merge 8990d8b26 into 7cb5a6db8

Pull Request Pull Request #7031: fix: header parameter should be case insensitive

Run Details

3 of 4 new or added lines in 1 file covered. (75.0%)

167 existing lines in 27 files now uncovered.

11314 of 18525 relevant lines covered (61.07%)

51.02 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

0.0

/src/GraphQl/Resolver/Stage/SecurityPostValidationStage.php

<?php

/*
 * This file is part of the API Platform project.
 *
 * (c) Kévin Dunglas <dunglas@gmail.com>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

declare(strict_types=1);

namespace ApiPlatform\GraphQl\Resolver\Stage;

use ApiPlatform\Metadata\GraphQl\Operation;
use ApiPlatform\Metadata\ResourceAccessCheckerInterface;
use ApiPlatform\Symfony\Security\ResourceAccessCheckerInterface as LegacyResourceAccessCheckerInterface;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;

/**
 * Security post validation stage of GraphQL resolvers.
 *
 * @deprecated use providers instead of stages
 *
 * @author Vincent Chalamon <vincentchalamon@gmail.com>
 * @author Grégoire Pineau <lyrixx@lyrixx.info>
 */
final class SecurityPostValidationStage implements SecurityPostValidationStageInterface
{
    /**
     * @var LegacyResourceAccessCheckerInterface|ResourceAccessCheckerInterface
     */
    private $resourceAccessChecker;

    /**
     * @param LegacyResourceAccessCheckerInterface|ResourceAccessCheckerInterface|null $resourceAccessChecker
     */
    public function __construct($resourceAccessChecker)
    {
        $this->resourceAccessChecker = $resourceAccessChecker;
    }

    /**
     * {@inheritdoc}
     */
    public function __invoke(string $resourceClass, Operation $operation, array $context): void
    {
        $isGranted = $operation->getSecurityPostValidation();

        if (null !== $isGranted && null === $this->resourceAccessChecker) {
            throw new \LogicException('Cannot check security expression when SecurityBundle is not installed. Try running "composer require symfony/security-bundle".');
        }

        if (null === $isGranted || $this->resourceAccessChecker->isGranted($resourceClass, (string) $isGranted, $context['extra_variables'])) {
            return;
        }

        throw new AccessDeniedHttpException($operation->getSecurityPostValidationMessage() ?? 'Access Denied.');
    }
}

1	<?php
2
3	/*
4	* This file is part of the API Platform project.
5	*
6	* (c) Kévin Dunglas <dunglas@gmail.com>
7	*
8	* For the full copyright and license information, please view the LICENSE
9	* file that was distributed with this source code.
10	*/
11
12	declare(strict_types=1);
13
14	namespace ApiPlatform\GraphQl\Resolver\Stage;
15
16	use ApiPlatform\Metadata\GraphQl\Operation;
17	use ApiPlatform\Metadata\ResourceAccessCheckerInterface;
18	use ApiPlatform\Symfony\Security\ResourceAccessCheckerInterface as LegacyResourceAccessCheckerInterface;
19	use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
20
21	/**
22	* Security post validation stage of GraphQL resolvers.
23	*
24	* @deprecated use providers instead of stages
25	*
26	* @author Vincent Chalamon <vincentchalamon@gmail.com>
27	* @author Grégoire Pineau <lyrixx@lyrixx.info>
28	*/
29	final class SecurityPostValidationStage implements SecurityPostValidationStageInterface
30	{
31	/**
32	* @var LegacyResourceAccessCheckerInterface\|ResourceAccessCheckerInterface
33	*/
34	private $resourceAccessChecker;
35
36	/**
37	* @param LegacyResourceAccessCheckerInterface\|ResourceAccessCheckerInterface\|null $resourceAccessChecker
38	*/
39	public function __construct($resourceAccessChecker)
40	{
UNCOV 41	$this->resourceAccessChecker = $resourceAccessChecker;	×
42	}
43
44	/**
45	* {@inheritdoc}
46	*/
47	public function __invoke(string $resourceClass, Operation $operation, array $context): void
48	{
49	$isGranted = $operation->getSecurityPostValidation();	×
50
51	if (null !== $isGranted && null === $this->resourceAccessChecker) {	×
52	throw new \LogicException('Cannot check security expression when SecurityBundle is not installed. Try running "composer require symfony/security-bundle".');	×
53	}
54
55	if (null === $isGranted \|\| $this->resourceAccessChecker->isGranted($resourceClass, (string) $isGranted, $context['extra_variables'])) {	×
56	return;	×
57	}
58
59	throw new AccessDeniedHttpException($operation->getSecurityPostValidationMessage() ?? 'Access Denied.');	×
60	}
61	}

api-platform / core / 13925245599

Source File Press 'n' to go to next uncovered line, 'b' for previous

Source File
Press 'n' to go to next uncovered line, 'b' for previous