[Security] Allow in memory user to have extra fields

noniagriconomie · noniagriconomie · commit 474eb6bb24ee · 2021-02-04T19:40:23.000+01:00
diff --git a/src/Symfony/Bundle/SecurityBundle/CHANGELOG.md b/src/Symfony/Bundle/SecurityBundle/CHANGELOG.md
@@ -1,6 +1,11 @@
 CHANGELOG
 =========
 
+5.3.0
+-----
+
+ * Added new `extraFields` in memory provider
+
 5.2.0
 -----
 
diff --git a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php
@@ -301,7 +301,7 @@ private function addProvidersSection(ArrayNodeDefinition $rootNode)
                             'memory' => [
                                 'users' => [
                                     'foo' => ['password' => 'foo', 'roles' => 'ROLE_USER'],
-                                    'bar' => ['password' => 'bar', 'roles' => '[ROLE_USER, ROLE_ADMIN]'],
+                                    'bar' => ['password' => 'bar', 'roles' => '[ROLE_USER, ROLE_ADMIN]', 'extraFields' => ['age' => '77']],
                                 ],
                             ],
                         ],
diff --git a/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/UserProvider/InMemoryFactory.php b/src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/UserProvider/InMemoryFactory.php
@@ -31,7 +31,7 @@ public function create(ContainerBuilder $container, string $id, array $config)
         $users = [];
 
         foreach ($config['users'] as $username => $user) {
-            $users[$username] = ['password' => null !== $user['password'] ? (string) $user['password'] : $defaultPassword, 'roles' => $user['roles']];
+            $users[$username] = ['password' => null !== $user['password'] ? (string) $user['password'] : $defaultPassword, 'roles' => $user['roles'], 'extraFields' => $user['extraFields']];
         }
 
         $definition->addArgument($users);
@@ -57,6 +57,9 @@ public function addConfiguration(NodeDefinition $node)
                                 ->beforeNormalization()->ifString()->then(function ($v) { return preg_split('/\s*,\s*/', $v); })->end()
                                 ->prototype('scalar')->end()
                             ->end()
+                            ->arrayNode('extraFields')
+                                ->prototype('scalar')->end()
+                            ->end()
                         ->end()
                     ->end()
                 ->end()
diff --git a/src/Symfony/Component/Security/Core/Tests/User/InMemoryUserProviderTest.php b/src/Symfony/Component/Security/Core/Tests/User/InMemoryUserProviderTest.php
@@ -25,6 +25,7 @@ public function testConstructor()
         $user = $provider->loadUserByUsername('fabien');
         $this->assertEquals('foo', $user->getPassword());
         $this->assertEquals(['ROLE_USER'], $user->getRoles());
+        $this->assertEquals(['age' => '77'], $user->extraFields());
         $this->assertFalse($user->isEnabled());
     }
 
@@ -37,6 +38,7 @@ public function testRefresh()
         $refreshedUser = $provider->refreshUser($user);
         $this->assertEquals('foo', $refreshedUser->getPassword());
         $this->assertEquals(['ROLE_USER'], $refreshedUser->getRoles());
+        $this->assertEquals(['age' => '77'], $refreshedUser->extraFields());
         $this->assertFalse($refreshedUser->isEnabled());
         $this->assertFalse($refreshedUser->isCredentialsNonExpired());
     }
@@ -48,6 +50,7 @@ protected function createProvider(): InMemoryUserProvider
                 'password' => 'foo',
                 'enabled' => false,
                 'roles' => ['ROLE_USER'],
+                'extraFields' => ['age' => '77'],
             ],
         ]);
     }
diff --git a/src/Symfony/Component/Security/Core/User/InMemoryUserProvider.php b/src/Symfony/Component/Security/Core/User/InMemoryUserProvider.php
@@ -38,7 +38,8 @@ public function __construct(array $users = [])
             $password = $attributes['password'] ?? null;
             $enabled = $attributes['enabled'] ?? true;
             $roles = $attributes['roles'] ?? [];
-            $user = new User($username, $password, $roles, $enabled, true, true, true);
+            $extraFields = $attributes['extraFields'] ?? [];
+            $user = new User($username, $password, $roles, $enabled, true, true, true, $extraFields);
 
             $this->createUser($user);
         }
@@ -65,7 +66,7 @@ public function loadUserByUsername(string $username)
     {
         $user = $this->getUser($username);
 
-        return new User($user->getUsername(), $user->getPassword(), $user->getRoles(), $user->isEnabled(), $user->isAccountNonExpired(), $user->isCredentialsNonExpired(), $user->isAccountNonLocked());
+        return new User($user->getUsername(), $user->getPassword(), $user->getRoles(), $user->isEnabled(), $user->isAccountNonExpired(), $user->isCredentialsNonExpired(), $user->isAccountNonLocked(), $user->getExtraFields());
     }
 
     /**
@@ -79,7 +80,7 @@ public function refreshUser(UserInterface $user)
 
         $storedUser = $this->getUser($user->getUsername());
 
-        return new User($storedUser->getUsername(), $storedUser->getPassword(), $storedUser->getRoles(), $storedUser->isEnabled(), $storedUser->isAccountNonExpired(), $storedUser->isCredentialsNonExpired() && $storedUser->getPassword() === $user->getPassword(), $storedUser->isAccountNonLocked());
+        return new User($storedUser->getUsername(), $storedUser->getPassword(), $storedUser->getRoles(), $storedUser->isEnabled(), $storedUser->isAccountNonExpired(), $storedUser->isCredentialsNonExpired() && $storedUser->getPassword() === $user->getPassword(), $storedUser->isAccountNonLocked(), $storedUser->getExtraFields());
     }
 
     /**

Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,8 @@ public function __construct(array $users = [])`
`38`	`38`	`$password = $attributes['password'] ?? null;`
`39`	`39`	`$enabled = $attributes['enabled'] ?? true;`
`40`	`40`	`$roles = $attributes['roles'] ?? [];`
`41`		`- $user = new User($username, $password, $roles, $enabled, true, true, true);`
	`41`	`+ $extraFields = $attributes['extraFields'] ?? [];`
	`42`	`+ $user = new User($username, $password, $roles, $enabled, true, true, true, $extraFields);`
`42`	`43`
`43`	`44`	`$this->createUser($user);`
`44`	`45`	`}`
`@@ -65,7 +66,7 @@ public function loadUserByUsername(string $username)`
`65`	`66`	`{`
`66`	`67`	`$user = $this->getUser($username);`
`67`	`68`
`68`		`- return new User($user->getUsername(), $user->getPassword(), $user->getRoles(), $user->isEnabled(), $user->isAccountNonExpired(), $user->isCredentialsNonExpired(), $user->isAccountNonLocked());`
	`69`	`+ return new User($user->getUsername(), $user->getPassword(), $user->getRoles(), $user->isEnabled(), $user->isAccountNonExpired(), $user->isCredentialsNonExpired(), $user->isAccountNonLocked(), $user->getExtraFields());`
`69`	`70`	`}`
`70`	`71`
`71`	`72`	`/**`
`@@ -79,7 +80,7 @@ public function refreshUser(UserInterface $user)`
`79`	`80`
`80`	`81`	`$storedUser = $this->getUser($user->getUsername());`
`81`	`82`
`82`		`- return new User($storedUser->getUsername(), $storedUser->getPassword(), $storedUser->getRoles(), $storedUser->isEnabled(), $storedUser->isAccountNonExpired(), $storedUser->isCredentialsNonExpired() && $storedUser->getPassword() === $user->getPassword(), $storedUser->isAccountNonLocked());`
	`83`	`+ return new User($storedUser->getUsername(), $storedUser->getPassword(), $storedUser->getRoles(), $storedUser->isEnabled(), $storedUser->isAccountNonExpired(), $storedUser->isCredentialsNonExpired() && $storedUser->getPassword() === $user->getPassword(), $storedUser->isAccountNonLocked(), $storedUser->getExtraFields());`
`83`	`84`	`}`
`84`	`85`
`85`	`86`	`/**`