From cd2974d340da8d755f3214d589d56b947ab27c30 Mon Sep 17 00:00:00 2001
From: Andras Ratz <andras.ratz@ymc.ch>
Date: Sat, 1 Nov 2014 13:15:16 +0100
Subject: [PATCH] fix suggessions from sensiolabs insight

---
 .gitignore                                    |   2 +-
 .../views/Page/index.html.twig                |   2 +-
 .../LiipSearchBundle/views/layout.html.twig   |   2 +-
 .../views/Exception/error.html.twig           |   2 +-
 app/autoload.php                              |   2 +-
 app/config/config.yml                         |   3 +-
 app/config/parameters.yml.dist                |   7 +-
 app/config/security.yml                       |  10 +-
 jack                                          |   1 -
 .../SandboxMainExtension.php                  |   7 +-
 .../MainBundle/Resources/config/services.xml  |  19 +++
 .../MainBundle/Resources/config/services.yml  |  11 --
 web/config.php                                | 124 ------------------
 13 files changed, 41 insertions(+), 151 deletions(-)
 create mode 100644 src/Sandbox/MainBundle/Resources/config/services.xml
 delete mode 100644 src/Sandbox/MainBundle/Resources/config/services.yml
 delete mode 100644 web/config.php

diff --git a/.gitignore b/.gitignore
index c3ff56ce..d8d767a7 100644
--- a/.gitignore
+++ b/.gitignore
@@ -19,4 +19,4 @@ app/bootstrap.php.cache
 app/SymfonyRequirements.php
 /bin/
 /app/app.sqlite
-app/check.php
\ No newline at end of file
+app/check.php
diff --git a/app/Resources/CmfSimpleCmsBundle/views/Page/index.html.twig b/app/Resources/CmfSimpleCmsBundle/views/Page/index.html.twig
index 8cfbc3ae..e211243e 100644
--- a/app/Resources/CmfSimpleCmsBundle/views/Page/index.html.twig
+++ b/app/Resources/CmfSimpleCmsBundle/views/Page/index.html.twig
@@ -6,4 +6,4 @@
     {{ rdf|raw }}
     {% endcreatephp %}
 
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/app/Resources/LiipSearchBundle/views/layout.html.twig b/app/Resources/LiipSearchBundle/views/layout.html.twig
index 098b644c..821b1b6d 100644
--- a/app/Resources/LiipSearchBundle/views/layout.html.twig
+++ b/app/Resources/LiipSearchBundle/views/layout.html.twig
@@ -1 +1 @@
-{% extends "SandboxMainBundle::skeleton.html.twig" %}
\ No newline at end of file
+{% extends "SandboxMainBundle::skeleton.html.twig" %}
diff --git a/app/Resources/TwigBundle/views/Exception/error.html.twig b/app/Resources/TwigBundle/views/Exception/error.html.twig
index 41b7638d..c73ade77 100644
--- a/app/Resources/TwigBundle/views/Exception/error.html.twig
+++ b/app/Resources/TwigBundle/views/Exception/error.html.twig
@@ -16,4 +16,4 @@
     <a href="{{ app.request.getSchemeAndHttpHost }}/reload-fixtures.php">reload-fixtures.php</a>
 </p>
 </body>
-</html>
\ No newline at end of file
+</html>
diff --git a/app/autoload.php b/app/autoload.php
index 5fdae46c..5876176e 100644
--- a/app/autoload.php
+++ b/app/autoload.php
@@ -21,4 +21,4 @@
 AnnotationRegistry::registerLoader(array($loader, 'loadClass'));
 AnnotationRegistry::registerFile(__DIR__.'/../vendor/doctrine/phpcr-odm/lib/Doctrine/ODM/PHPCR/Mapping/Annotations/DoctrineAnnotations.php');
 
-return $loader;
\ No newline at end of file
+return $loader;
diff --git a/app/config/config.yml b/app/config/config.yml
index 25d0cbc9..eb37c45e 100644
--- a/app/config/config.yml
+++ b/app/config/config.yml
@@ -13,7 +13,8 @@ framework:
     validation:      { enable_annotations: true }
     templating:      { engines: ['twig'] } #assets_version: SomeVersionScheme
     default_locale:  %locale%
-    session:         ~
+    session:
+        name: symfony-cmf
     trusted_proxies: ~
 
 # Twig Configuration
diff --git a/app/config/parameters.yml.dist b/app/config/parameters.yml.dist
index b16bb33e..2e7eb4a8 100644
--- a/app/config/parameters.yml.dist
+++ b/app/config/parameters.yml.dist
@@ -2,7 +2,7 @@ parameters:
     locale: en
     locales: [en, fr, de]
 
-    secret: ThisTokenIsNotSoSecretChangeIt
+    secret: bcd39bfa638e42bfd1628d8d7c269841
 
     # a little hack to avoid errors on missing node/coffeescript.
     # remove -disabled if you want coffee.
@@ -22,3 +22,8 @@ parameters:
     mailer_host:       localhost
     mailer_user:       ~
     mailer_password:   ~
+
+    #user
+    security_user_password: $2y$12$zoziRrBLGcLloghFoj6rje1DVgmngducslRKduhQy9HVGCXKP0WYi
+    #admin
+    security_admin_password: $2y$12$j1vardxXG7oBRg/0MXqNP.oXdTlR0foxgeLGqnlypTpmFMiMtdlry
\ No newline at end of file
diff --git a/app/config/security.yml b/app/config/security.yml
index dec235d1..6d58f70e 100644
--- a/app/config/security.yml
+++ b/app/config/security.yml
@@ -1,6 +1,8 @@
 security:
     encoders:
-        Symfony\Component\Security\Core\User\User: plaintext
+        Symfony\Component\Security\Core\User\User:
+            algorithm: bcrypt
+            cost: 12
 
     role_hierarchy:
         ROLE_ADMIN:       [ROLE_USER, ROLE_SONATA_ADMIN, CAN_VIEW_NON_PUBLISHED]
@@ -10,8 +12,8 @@ security:
         in_memory:
             memory:
                 users:
-                    user:  { password: user, roles: [ 'ROLE_USER' ] }
-                    admin: { password: admin, roles: [ 'ROLE_ADMIN' ] }
+                    user:  { password: %security_user_password%, roles: [ 'ROLE_USER' ] }
+                    admin: { password: %security_admin_password%, roles: [ 'ROLE_ADMIN' ] }
 
     firewalls:
         dev:
@@ -28,4 +30,4 @@ security:
         - { path: ^(/(de|fr|en))?/admin, roles: ROLE_ADMIN }
         #- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
         - { path: ^/efconnect, role: ROLE_USER }
-        - { path: ^/elfinder, role: ROLE_USER }
\ No newline at end of file
+        - { path: ^/elfinder, role: ROLE_USER }
diff --git a/jack b/jack
index 0dde3566..f2c67636 100755
--- a/jack
+++ b/jack
@@ -133,7 +133,6 @@ case "$action" in
     flush:article)
         [ -z $args ] && args=$(date +%Y/%m/%d)
         [ $args = "all" ] && args=""
-        # TODO extract port from $args
         curl -X DELETE http://admin:admin@localhost:8080/server/nzz/jcr:root/article/$args
         ;;
 
diff --git a/src/Sandbox/MainBundle/DependencyInjection/SandboxMainExtension.php b/src/Sandbox/MainBundle/DependencyInjection/SandboxMainExtension.php
index 2b846a1e..3ac6176e 100644
--- a/src/Sandbox/MainBundle/DependencyInjection/SandboxMainExtension.php
+++ b/src/Sandbox/MainBundle/DependencyInjection/SandboxMainExtension.php
@@ -3,15 +3,14 @@
 
 use Symfony\Component\HttpKernel\DependencyInjection\Extension;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
-//TODO: make config xml instead of yml
-use Symfony\Component\DependencyInjection\Loader\YamlFileLoader;
+use Symfony\Component\DependencyInjection\Loader\XmlFileLoader;
 use Symfony\Component\Config\FileLocator;
 
 class SandboxMainExtension extends Extension
 {
     public function load(array $configs, ContainerBuilder $container)
     {
-        $loader = new YamlFileLoader($container, new FileLocator(__DIR__.'/../Resources/config'));
-        $loader->load('services.yml');
+        $loader = new XmlFileLoader($container, new FileLocator(__DIR__.'/../Resources/config'));
+        $loader->load('services.xml');
     }
 }
diff --git a/src/Sandbox/MainBundle/Resources/config/services.xml b/src/Sandbox/MainBundle/Resources/config/services.xml
new file mode 100644
index 00000000..c02338c3
--- /dev/null
+++ b/src/Sandbox/MainBundle/Resources/config/services.xml
@@ -0,0 +1,19 @@
+<?xml version="1.0" ?>
+
+<container xmlns="http://symfony.com/schema/dic/services"
+           xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+           xsi:schemaLocation="http://symfony.com/schema/dic/services http://symfony.com/schema/dic/services/services-1.0.xsd">
+
+    <services>
+        <service id="sandbox_main.controller" class="Sandbox\MainBundle\Controller\ContentController" parent="cmf_content.controller">
+        </service>
+
+        <service id="sandbox_main.debugListener" class="Sandbox\MainBundle\EventListener\SandboxExceptionListener">
+            <call method="setContainer">
+                <argument type="service" id="service_container" />
+            </call>
+            <tag name="kernel.event_subscriber" />
+        </service>
+
+    </services>
+</container>
diff --git a/src/Sandbox/MainBundle/Resources/config/services.yml b/src/Sandbox/MainBundle/Resources/config/services.yml
deleted file mode 100644
index 0c40b0df..00000000
--- a/src/Sandbox/MainBundle/Resources/config/services.yml
+++ /dev/null
@@ -1,11 +0,0 @@
-services:
-    sandbox_main.controller:
-        class: Sandbox\MainBundle\Controller\ContentController
-        parent: cmf_content.controller
-
-    sandbox_main.debugListener:
-        class: Sandbox\MainBundle\EventListener\SandboxExceptionListener
-        calls:
-            - [ setContainer, [@service_container] ]
-        tags:
-            - {name: "kernel.event_subscriber"}
diff --git a/web/config.php b/web/config.php
deleted file mode 100644
index 162acfc7..00000000
--- a/web/config.php
+++ /dev/null
@@ -1,124 +0,0 @@
-<?php
-
-if (!isset($_SERVER['HTTP_HOST'])) {
-    exit('This script cannot be run from the CLI. Run it from a browser.');
-}
-
-if (!in_array(@$_SERVER['REMOTE_ADDR'], array(
-    '127.0.0.1',
-    '::1',
-))) {
-    header('HTTP/1.0 403 Forbidden');
-    exit('This script is only accessible from localhost.');
-}
-
-require_once dirname(__FILE__).'/../app/SymfonyRequirements.php';
-
-$symfonyRequirements = new SymfonyRequirements();
-
-$majorProblems = $symfonyRequirements->getFailedRequirements();
-$minorProblems = $symfonyRequirements->getFailedRecommendations();
-
-?>
-<!DOCTYPE html>
-<html>
-    <head>
-        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
-        <meta name="robots" content="noindex,nofollow" />
-        <title>Symfony Configuration</title>
-        <link rel="stylesheet" href="bundles/framework/css/structure.css" media="all" />
-        <link rel="stylesheet" href="bundles/framework/css/body.css" media="all" />
-        <link rel="stylesheet" href="bundles/sensiodistribution/webconfigurator/css/install.css" media="all" />
-    </head>
-    <body>
-        <div id="content">
-            <div class="header clear-fix">
-                <div class="header-logo">
-                    <img src="bundles/framework/images/logo_symfony.png" alt="Symfony" />
-                </div>
-
-                <div class="search">
-                  <form method="get" action="http://symfony.com/search">
-                    <div class="form-row">
-
-                      <label for="search-id">
-                          <img src="bundles/framework/images/grey_magnifier.png" alt="Search on Symfony website" />
-                      </label>
-
-                      <input name="q" id="search-id" type="search" placeholder="Search on Symfony website" />
-
-                      <button type="submit" class="sf-button">
-                          <span class="border-l">
-                            <span class="border-r">
-                                <span class="btn-bg">OK</span>
-                            </span>
-                        </span>
-                      </button>
-                    </div>
-                   </form>
-                </div>
-            </div>
-
-            <div class="sf-reset">
-                <div class="block">
-                    <div class="symfony-block-content">
-                        <h1 class="title">Welcome!</h1>
-                        <p>Welcome to your new Symfony project.</p>
-                        <p>
-                            This script will guide you through the basic configuration of your project.
-                            You can also do the same by editing the ‘<strong>app/config/parameters.yml</strong>’ file directly.
-                        </p>
-
-                        <?php if (count($majorProblems)): ?>
-                            <h2 class="ko">Major problems</h2>
-                            <p>Major problems have been detected and <strong>must</strong> be fixed before continuing:</p>
-                            <ol>
-                                <?php foreach ($majorProblems as $problem): ?>
-                                    <li><?php echo $problem->getHelpHtml() ?></li>
-                                <?php endforeach; ?>
-                            </ol>
-                        <?php endif; ?>
-
-                        <?php if (count($minorProblems)): ?>
-                            <h2>Recommendations</h2>
-                            <p>
-                                <?php if (count($majorProblems)): ?>Additionally, to<?php else: ?>To<?php endif; ?> enhance your Symfony experience,
-                                it’s recommended that you fix the following:
-                            </p>
-                            <ol>
-                                <?php foreach ($minorProblems as $problem): ?>
-                                    <li><?php echo $problem->getHelpHtml() ?></li>
-                                <?php endforeach; ?>
-                            </ol>
-                        <?php endif; ?>
-
-                        <?php if ($symfonyRequirements->hasPhpIniConfigIssue()): ?>
-                            <p id="phpini">*
-                                <?php if ($symfonyRequirements->getPhpIniConfigPath()): ?>
-                                    Changes to the <strong>php.ini</strong> file must be done in "<strong><?php echo $symfonyRequirements->getPhpIniConfigPath() ?></strong>".
-                                <?php else: ?>
-                                    To change settings, create a "<strong>php.ini</strong>".
-                                <?php endif; ?>
-                            </p>
-                        <?php endif; ?>
-
-                        <?php if (!count($majorProblems) && !count($minorProblems)): ?>
-                            <p class="ok">Your configuration looks good to run Symfony.</p>
-                        <?php endif; ?>
-
-                        <ul class="symfony-install-continue">
-                            <?php if (!count($majorProblems)): ?>
-                                <li><a href="app_dev.php/_configurator/">Configure your Symfony Application online</a></li>
-                                <li><a href="app_dev.php/">Bypass configuration and go to the Welcome page</a></li>
-                            <?php endif; ?>
-                            <?php if (count($majorProblems) || count($minorProblems)): ?>
-                                <li><a href="config.php">Re-check configuration</a></li>
-                            <?php endif; ?>
-                        </ul>
-                    </div>
-                </div>
-            </div>
-            <div class="version">Symfony Standard Edition</div>
-        </div>
-    </body>
-</html>