$identifier cannot be empty, when creating class scope

[mailaneel]

$aclManager = $this->get('problematic.acl_manager');
$aclManager->setClassPermission('Entity\Subscriber', MaskBuilder::MASK_OWNER, 'ROLE_CLIENT');

internally setClassPermission is using $oid = ObjectIdentity::fromDomainObject($domainObject); instead i think we should check the type and then get the oid because for class type we should use new ObjectIdentity($identifier, $type)

[mailaneel]

This is fix that i have added

 $oid = ($type == 'object')? ObjectIdentity::fromDomainObject($domainObject) : new ObjectIdentity('class',$domainObject);

[Problematic]

Thanks for the help! If you can submit a pull request, I'll look it over and get it merged.

[mailaneel]

Implemented this instead, ignore my pull

<?php

namespace WSL\BaseBundle\Entity;

use Doctrine\ORM\Mapping as ORM,
    Symfony\Component\Security\Acl\Model\DomainObjectInterface;

/**
 * WSL\BaseBundle\Entity\DomainObject
 * @MappedSuperclass
 */
class DomainObject implements DomainObjectInterface
{

    public function getObjectIdentifier()
    {
        $identifier = $this->getId();
        return (!empty($identifier)) ? $identifier : 'class';
    }

}

[Problematic]

I still think there's value in being able to handle class-level ACLs without requiring extra code. I'm going to leave this open for now while I think it over.

[mailaneel]

sure

[sudent]

I think the first fix is the right one, since our entity might extend from another base class and thus can't use the second @mailaneel fix. Thoughts?