This repository has been archived by the owner on Aug 29, 2023. It is now read-only.

Avoid using Symfony ACL #45

Open

rmatil opened this issue Dec 20, 2016 · 0 comments

Owner

rmatil commented Dec 20, 2016

At the moment, Symfony's ACL based on RoleSecurityIdentities is not of much use:

Reasons:

Equality checks of RoleSecurityIdentities fail since they compare by identity and only by role if the identity matches
Removing multiple ACEs at the same time causes OutOfBoundExceptions (See also [BUG] Ace order is breaking after the deletion of a security identity symfony/security-acl#28, CS: Ensure that offsets starts from 0 symfony/security-acl#24, Mutable ACL Provider symfony/security-acl#23 and the unmerged PR Fix breaking of ACE order after deletion of security identity symfony/security-acl#29)

Solution

Use Role Voters instead: http://symfony.com/doc/current/security/voters.html

rmatil added a commit that referenced this issue


          Remove ACLs: See also #45

c534cb7

rmatil added a commit that referenced this issue


          Remove ACLs: See also #45

b6a64be

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.