New in Symfony 4.2: Detailed security voters decisions

November 7, 2018 Published by Avatar of Javier Eguiluz Javier Eguiluz

Warning: This post is about an unsupported Symfony version. Some of this information may be out of date. Read the most recent Symfony Docs.

Laurent Voullemier
Contributed by Laurent Voullemier in #27914

Security voters are the key feature of Symfony's authorization mechanism. They provide the most granular way of checking permissions (e.g. "can this specific user edit the given item?").

In order to grant or deny permission, all the voters' decisions are aggregated by the Access Decision Manager. Then, depending on your application config, permission is granted if all voters said yes (unanimous), or if the majority said yes (consensus), or if at least one voter said yes (affirmative).

Sometimes, when your security logic is complex, you may need to know exactly why some permission was granted. Symfony Profiler already shows some details about voters:

However, the information is not as detailed as it should be. In Symfony 4.2, we improved this panel to display all the information available about the voters decisions and not only the aggregated results:

Published in #Living on the edge

Help the Symfony project!

As with any Open-Source project, contributing code or documentation is the most common way to help, but we also have a wide range of sponsoring opportunities.

Comments

Avatar of jeremyFreeAgent — Jérémy Romey
jeremyFreeAgent — Jérémy Romey Certified said on Nov 7, 2018
Nice one! Good job!
Avatar of Romain Gautier
Romain Gautier Certified said on Nov 7, 2018
Thanks Laurent ! Nice feature.
Avatar of Maxime Corson
Maxime Corson said on Nov 8, 2018
This is the kind of improvement that makes Symfony one of the best PHP framework. Good job again ! 👌

Comments are closed.

To ensure that comments stay relevant, they are closed for old posts.