Initial commit with Symfony 2.1+Vendors

Signed-off-by: Gergely POLONKAI (W00d5t0ck) <polesz@w00d5t0ck.info>

vendor/jms/security-extra-bundle/JMS/SecurityExtraBundle/Metadata/Driver/AnnotationDriver.php

@@ -0,0 +1,107 @@
+<?php
+
+/*
+ * Copyright 2011 Johannes M. Schmitt <schmittjoh@gmail.com>
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+namespace JMS\SecurityExtraBundle\Metadata\Driver;
+
+use JMS\SecurityExtraBundle\Exception\InvalidArgumentException;
+use Doctrine\Common\Annotations\Reader;
+use JMS\SecurityExtraBundle\Annotation\PreAuthorize;
+use JMS\SecurityExtraBundle\Annotation\RunAs;
+use JMS\SecurityExtraBundle\Annotation\SatisfiesParentSecurityPolicy;
+use JMS\SecurityExtraBundle\Annotation\Secure;
+use JMS\SecurityExtraBundle\Annotation\SecureParam;
+use JMS\SecurityExtraBundle\Annotation\SecureReturn;
+use JMS\SecurityExtraBundle\Metadata\ClassMetadata;
+use JMS\SecurityExtraBundle\Metadata\MethodMetadata;
+use Metadata\Driver\DriverInterface;
+use \ReflectionClass;
+use \ReflectionMethod;
+use JMS\SecurityExtraBundle\Security\Authorization\Expression\Expression;
+
+/**
+ * Loads security annotations and converts them to metadata
+ *
+ * @author Johannes M. Schmitt <schmittjoh@gmail.com>
+ */
+class AnnotationDriver implements DriverInterface
+{
+    private $reader;
+
+    public function __construct(Reader $reader)
+    {
+        $this->reader = $reader;
+    }
+
+    public function loadMetadataForClass(ReflectionClass $reflection)
+    {
+        $metadata = new ClassMetadata($reflection->getName());
+
+        foreach ($reflection->getMethods(ReflectionMethod::IS_PUBLIC | ReflectionMethod::IS_PROTECTED) as $method) {
+            // check if the method was defined on this class
+            if ($method->getDeclaringClass()->getName() !== $reflection->getName()) {
+                continue;
+            }
+
+            $annotations = $this->reader->getMethodAnnotations($method);
+
+            if ($annotations && null !== $methodMetadata = $this->convertMethodAnnotations($method, $annotations)) {
+                $metadata->addMethodMetadata($methodMetadata);
+            }
+        }
+
+        return $metadata;
+    }
+
+    private function convertMethodAnnotations(\ReflectionMethod $method, array $annotations)
+    {
+        $parameters = array();
+        foreach ($method->getParameters() as $index => $parameter) {
+            $parameters[$parameter->getName()] = $index;
+        }
+
+        $methodMetadata = new MethodMetadata($method->getDeclaringClass()->getName(), $method->getName());
+        $hasSecurityMetadata = false;
+        foreach ($annotations as $annotation) {
+            if ($annotation instanceof Secure) {
+                $methodMetadata->roles = $annotation->roles;
+                $hasSecurityMetadata = true;
+            } else if ($annotation instanceof PreAuthorize) {
+                $methodMetadata->roles = array(new Expression($annotation->expr));
+                $hasSecurityMetadata = true;
+            } else if ($annotation instanceof SecureParam) {
+                if (!isset($parameters[$annotation->name])) {
+                    throw new InvalidArgumentException(sprintf('The parameter "%s" does not exist for method "%s".', $annotation->name, $method->getName()));
+                }
+
+                $methodMetadata->addParamPermissions($parameters[$annotation->name], $annotation->permissions);
+                $hasSecurityMetadata = true;
+            } else if ($annotation instanceof SecureReturn) {
+                $methodMetadata->returnPermissions = $annotation->permissions;
+                $hasSecurityMetadata = true;
+            } else if ($annotation instanceof SatisfiesParentSecurityPolicy) {
+                $methodMetadata->satisfiesParentSecurityPolicy = true;
+                $hasSecurityMetadata = true;
+            } else if ($annotation instanceof RunAs) {
+                $methodMetadata->runAsRoles = $annotation->roles;
+                $hasSecurityMetadata = true;
+            }
+        }
+
+        return $hasSecurityMetadata ? $methodMetadata : null;
+    }
+}

vendor/jms/security-extra-bundle/JMS/SecurityExtraBundle/Metadata/Driver/ConfigDriver.php

@@ -0,0 +1,100 @@
+<?php
+
+namespace JMS\SecurityExtraBundle\Metadata\Driver;
+
+use JMS\SecurityExtraBundle\Security\Authorization\Expression\Expression;
+use JMS\SecurityExtraBundle\Metadata\MethodMetadata;
+use Symfony\Component\HttpKernel\Kernel;
+use JMS\SecurityExtraBundle\Metadata\ClassMetadata;
+use Metadata\Driver\DriverInterface;
+
+/**
+ * Uses Symfony2 DI configuration for metadata.
+ *
+ * @author Johannes M. Schmitt <schmittjoh@gmail.com>
+ */
+class ConfigDriver implements DriverInterface
+{
+    private $bundles;
+    private $config;
+
+    public function __construct(array $bundles, array $config)
+    {
+        uasort($bundles, function($a, $b) {
+            return strlen($b) - strlen($a);
+        });
+
+        foreach ($bundles as $name => $namespace) {
+            $bundles[$name] = substr($namespace, 0, strrpos($namespace, '\\'));
+        }
+
+        $this->bundles = $bundles;
+        $this->config = $config;
+    }
+
+    public function loadMetadataForClass(\ReflectionClass $class)
+    {
+        $metadata = new ClassMetadata($class->name);
+
+        foreach ($class->getMethods(\ReflectionMethod::IS_PUBLIC | \ReflectionMethod::IS_PROTECTED) as $method) {
+            if ($method->getDeclaringClass()->name !== $class->name) {
+                continue;
+            }
+
+            $expression = null;
+            if (null !== $notation = $this->getControllerNotation($method)) {
+                $expression = $this->getExpressionForSignature($notation);
+            }
+
+            if (null === $expression && null === $expression =
+                    $this->getExpressionForSignature($method->class.'::'.$method->name)) {
+                continue;
+            }
+
+            $methodMetadata = new MethodMetadata($method->class, $method->name);
+            $methodMetadata->roles = array(new Expression($expression));
+            $metadata->addMethodMetadata($methodMetadata);
+        }
+
+        if (!$metadata->methodMetadata) {
+            return null;
+        }
+
+        return $metadata;
+    }
+
+    private function getExpressionForSignature($signature)
+    {
+        foreach ($this->config as $pattern => $expr) {
+            if (!preg_match('#'.$pattern.'#i', $signature)) {
+                continue;
+            }
+
+            return $expr;
+        }
+
+        return null;
+    }
+
+    // TODO: Is it feasible to reverse-engineer the notation for service controllers?
+    private function getControllerNotation(\ReflectionMethod $method)
+    {
+        $signature = $method->class.'::'.$method->name;
+
+        // check if class is a controller
+        if (0 === preg_match('#\\\\Controller\\\\([^\\\\]+)Controller::(.+)Action$#', $signature, $match)) {
+            return null;
+        }
+
+        foreach ($this->bundles as $name => $namespace) {
+            if (0 !== strpos($method->class, $namespace)) {
+                continue;
+            }
+
+            // controller notation (AcmeBundle:Foo:foo)
+            return $name.':'.$match[1].':'.$match[2];
+        }
+
+        return null;
+    }
+}