Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Apr 11, 2015
  1. Merge branch '1.3'

    authored
    * 1.3: (44 commits)
      Add a isGranted() function to Silex\Application\SecurityTrait + unit tests
      Type hint against EventDispatcherInterface
      Update usage.rst
      Use PSR-4 for autoloading, works same as the PSR-0 configuration. Use autoload-dev for autoloading tests
      updated CHANGELOG
      Patch debug and caching translator (Symfony 2.6+ with caching enabled).
      Updated year in License
      Update testing.rst
      Add docblock for the $app field
      fixed CS
      Update intro.rst
      Correct exception message when mounting
      fixed compatibility with 2.7
      updated .travis.yml with only maintained Symfony versions
      Link to Monolog provider chapter
      Fix README doc about running unit tests
      add values to parameters copied from symfony docs
      Use the constant to refer to session auth strategy
      Revert "Merge branch '1.2' into 1.3"
      updated deps as Silex 1.2 is not compatible with Symfony 2.7
      ...
    
    Conflicts:
    	.travis.yml
    	README.rst
    	composer.json
    	doc/changelog.rst
    	doc/providers/security.rst
    	doc/usage.rst
    	src/Silex/Api/BootableProviderInterface.php
    	src/Silex/Application.php
    	src/Silex/Provider/FormServiceProvider.php
    	src/Silex/Provider/HttpCacheServiceProvider.php
    	src/Silex/Provider/SecurityServiceProvider.php
    	src/Silex/Provider/Translation/Translator.php
    	src/Silex/Provider/TranslationServiceProvider.php
    	src/Silex/Provider/ValidatorServiceProvider.php
    	tests/Silex/Tests/Provider/MonologServiceProviderTest.php
    	tests/Silex/Tests/Provider/TwigServiceProviderTest.php
Commits on Jan 20, 2015
  1. updated docs

    authored
Commits on Dec 13, 2014
  1. Merge branch '1.2'

    authored
    * 1.2:
      Fixed Form Provider documentation
      Fix: Add missing method visibility in interface excerpts
      Adding a default port for the connection to the database
      Simplify installation instructions
      simplified Composer instructions
    
    Conflicts:
    	README.rst
    	doc/providers.rst
    	doc/usage.rst
Commits on Oct 14, 2014
Commits on Jul 8, 2014
  1. Merge branch '1.2'

    authored
    * 1.2:
      Minor optimization in ValidatorServiceProvider
      bumped version to 1.2.2-DEV
      prepared the 1.2.1 release
      updated CHANGELOG
      added a caution about how to configure security for php-cgi/Apache
    
    Conflicts:
    	doc/changelog.rst
    	doc/phar.rst
    	src/Silex/Application.php
    	src/Silex/Provider/ValidatorServiceProvider.php
Commits on Jul 1, 2014
Commits on Apr 29, 2014
  1. switched to Pimple 2.0

    authored
Commits on Dec 3, 2013
  1. Merge branch '1.0' into 1.1

    authored
    * 1.0:
      Remove gendered pronouns
Commits on Oct 11, 2013
  1. tweaked docs

    authored
  2. minor #732 Minor - Adding session dependency caution message (jmontoyaa)

    authored
    This PR was merged into the master branch.
    
    Discussion
    ----------
    
    Minor - Adding session dependency caution message
    
    Commits
    -------
    
    4eab2bd Update security.rst
    c0a5431 Minor - Adding session dependency caution message
Commits on Jan 19, 2013
  1. merged branch gigablah/security-flags (PR #573)

    authored
    This PR was merged into the master branch.
    
    Commits
    -------
    
    e21b380 Support 'security' and 'stateless' flags in security config
    
    Discussion
    ----------
    
    Support 'security' and 'stateless' flags in security config
    
    `'security' => false` will disable the firewall (for a particular area) even if there are listeners configured.
    
    `'stateless' => true` will prevent `ContextListener` from getting registered.
    
    ---------------------------------------------------------------------------
    
    by davedevelopment at 2013-01-05T15:01:38Z
    
    I'm not sure I understand what you'd use these flags for, perhaps some
    documentation would be useful?
     On Jan 5, 2013 10:05 AM, "Chris Heng" <notifications@github.com> wrote:
    
    > 'security' => false will disable the firewall even if there are listeners
    > configured.
    >
    > 'stateless' => true will prevent ContextListener from getting registered.
    > ------------------------------
    > You can merge this Pull Request by running:
    >
    >   git pull https://github.com/gigablah/Silex security-flags
    >
    > Or view, comment on, or merge it at:
    >
    >   https://github.com/fabpot/Silex/pull/573
    > Commit Summary
    >
    >    - Support 'security' and 'stateless' flags in security config
    >
    > File Changes
    >
    >    - *M* src/Silex/Provider/SecurityServiceProvider.php (10)
    >
    > Patch Links
    >
    >    - https://github.com/fabpot/Silex/pull/573.patch
    >    - https://github.com/fabpot/Silex/pull/573.diff
    >
    >  —
    > Reply to this email directly or view it on GitHub<https://github.com/fabpot/Silex/pull/573>.
    >
    >
    
    ---------------------------------------------------------------------------
    
    by gigablah at 2013-01-05T15:30:13Z
    
    These are the same flags you can use in Symfony2. I guess `'security' => false` by itself isn't too useful, but you could hypothetically do something like:
    
    ```php
    $app->register(new SecurityServiceProvider(), array(
        'security.firewalls' => array(
            'api' => array(
                'pattern' => '^/api',
                'stateless' => true,
                'security' => !$app['debug'],
                'oauth' => true
            )
        )
    ));
    ```
    
    Which will (a) turn off oauth access token authentication when you're debugging (b) turn off read/write on the session during authentication, which isn't wanted since the oauth access token is sent for each request.
    
    ---------------------------------------------------------------------------
    
    by davedevelopment at 2013-01-06T20:48:20Z
    
    Sorry, I think I got confused by the security flag, I understand the stateless one.
    
    ---------------------------------------------------------------------------
    
    by stof at 2013-01-06T21:13:04Z
    
    The goal of the ``security`` flag is to create a firewall pattern without firewall. The only reason for this is to whitelist a pattern by placing it before another pattern without having to create a crazy regex
    
    ---------------------------------------------------------------------------
    
    by fabpot at 2013-01-18T15:00:19Z
    
    Can you also update the documentation about these two new settings? Thanks.
    
    ---------------------------------------------------------------------------
    
    by gigablah at 2013-01-19T04:37:08Z
    
    It's done. Added a section for Stateless Authentication, and a tip for the `security` flag.
Commits on Nov 6, 2012
  1. forced the security to be setup properly when accessed outside of the…

    authored
    … handling of a request (refs #473)
Commits on Oct 24, 2012
  1. tweaked previous merge

    authored
Commits on Sep 8, 2012
  1. merged branch lyrixx/patch-3 (PR #477)

    authored
    Commits
    -------
    
    117e284 [Doc] Fixed markup in security doc
    
    Discussion
    ----------
    
    [Doc] Fixed markup in security doc
    
    Changed title level of "Defining a custom Authentication Provider"
    chapter to be more consistant with others.
  2. merged branch lyrixx/patch-2 (PR #476)

    authored
    Commits
    -------
    
    e3c757a [Doc] Fixed some missing use statements in the security
    
    Discussion
    ----------
    
    [Doc] Fixed some missing use statements in the security
Commits on Jul 22, 2012
Commits on Jul 1, 2012
Commits on Jun 30, 2012
Commits on Jun 23, 2012
  1. fixed typos in the doc

    authored
Commits on Jun 19, 2012
  1. added more docs

    authored
Commits on Jun 18, 2012
Commits on Jun 17, 2012
  1. fixed documentation (closes #375)

    authored
Commits on Jun 16, 2012
Commits on Jun 14, 2012
Commits on Jun 13, 2012
  1. tweaked some docs

    authored
  2. tweaked docs

    authored
Something went wrong with that request. Please try again.