Merge branch '5.4' into 6.3

nicolas-grekas · nicolas-grekas · commit ff7e2c03e46f · 2024-01-23T15:35:58.000+01:00
* 5.4:
  Fix implicitly-required parameters
  List CS fix in .git-blame-ignore-revs
  Apply php-cs-fixer fix --rules nullable_type_declaration_for_default_null_value
  [Messenger][AmazonSqs] Allow async-aws/sqs version 2
diff --git a/Authentication/AuthenticationTrustResolver.php b/Authentication/AuthenticationTrustResolver.php
@@ -21,17 +21,17 @@
  */
 class AuthenticationTrustResolver implements AuthenticationTrustResolverInterface
 {
-    public function isAuthenticated(TokenInterface $token = null): bool
+    public function isAuthenticated(?TokenInterface $token = null): bool
     {
         return $token && $token->getUser();
     }
 
-    public function isRememberMe(TokenInterface $token = null): bool
+    public function isRememberMe(?TokenInterface $token = null): bool
     {
         return $token && $token instanceof RememberMeToken;
     }
 
-    public function isFullFledged(TokenInterface $token = null): bool
+    public function isFullFledged(?TokenInterface $token = null): bool
     {
         return $this->isAuthenticated($token) && !$this->isRememberMe($token);
     }
diff --git a/Authentication/AuthenticationTrustResolverInterface.php b/Authentication/AuthenticationTrustResolverInterface.php
@@ -23,16 +23,16 @@ interface AuthenticationTrustResolverInterface
     /**
      * Resolves whether the passed token implementation is authenticated.
      */
-    public function isAuthenticated(TokenInterface $token = null): bool;
+    public function isAuthenticated(?TokenInterface $token = null): bool;
 
     /**
      * Resolves whether the passed token implementation is authenticated
      * using remember-me capabilities.
      */
-    public function isRememberMe(TokenInterface $token = null): bool;
+    public function isRememberMe(?TokenInterface $token = null): bool;
 
     /**
      * Resolves whether the passed token implementation is fully authenticated.
      */
-    public function isFullFledged(TokenInterface $token = null): bool;
+    public function isFullFledged(?TokenInterface $token = null): bool;
 }
diff --git a/Authentication/Token/Storage/TokenStorage.php b/Authentication/Token/Storage/TokenStorage.php
@@ -40,7 +40,7 @@ public function getToken(): ?TokenInterface
     /**
      * @return void
      */
-    public function setToken(TokenInterface $token = null)
+    public function setToken(?TokenInterface $token = null)
     {
         if (1 > \func_num_args()) {
             trigger_deprecation('symfony/security-core', '6.2', 'Calling "%s()" without any arguments is deprecated, pass null explicitly instead.', __METHOD__);
diff --git a/Authentication/Token/Storage/UsageTrackingTokenStorage.php b/Authentication/Token/Storage/UsageTrackingTokenStorage.php
@@ -44,7 +44,7 @@ public function getToken(): ?TokenInterface
         return $this->storage->getToken();
     }
 
-    public function setToken(TokenInterface $token = null): void
+    public function setToken(?TokenInterface $token = null): void
     {
         $this->storage->setToken($token);
 
diff --git a/Authentication/Token/SwitchUserToken.php b/Authentication/Token/SwitchUserToken.php
@@ -29,7 +29,7 @@ class SwitchUserToken extends UsernamePasswordToken
      *
      * @throws \InvalidArgumentException
      */
-    public function __construct(UserInterface $user, string $firewallName, array $roles, TokenInterface $originalToken, string $originatedFromUri = null)
+    public function __construct(UserInterface $user, string $firewallName, array $roles, TokenInterface $originalToken, ?string $originatedFromUri = null)
     {
         parent::__construct($user, $firewallName, $roles);
 
diff --git a/Authorization/AccessDecisionManager.php b/Authorization/AccessDecisionManager.php
@@ -40,7 +40,7 @@ final class AccessDecisionManager implements AccessDecisionManagerInterface
     /**
      * @param iterable<mixed, VoterInterface> $voters An array or an iterator of VoterInterface instances
      */
-    public function __construct(iterable $voters = [], AccessDecisionStrategyInterface $strategy = null)
+    public function __construct(iterable $voters = [], ?AccessDecisionStrategyInterface $strategy = null)
     {
         $this->voters = $voters;
         $this->strategy = $strategy ?? new AffirmativeStrategy();
diff --git a/Authorization/ExpressionLanguage.php b/Authorization/ExpressionLanguage.php
@@ -29,7 +29,7 @@ class_exists(ExpressionLanguageProvider::class);
      */
     class ExpressionLanguage extends BaseExpressionLanguage
     {
-        public function __construct(CacheItemPoolInterface $cache = null, array $providers = [])
+        public function __construct(?CacheItemPoolInterface $cache = null, array $providers = [])
         {
             // prepend the default provider to let users override it easily
             array_unshift($providers, new ExpressionLanguageProvider());
diff --git a/Authorization/Voter/ExpressionVoter.php b/Authorization/Voter/ExpressionVoter.php
@@ -31,7 +31,7 @@ class ExpressionVoter implements CacheableVoterInterface
     private AuthorizationCheckerInterface $authChecker;
     private ?RoleHierarchyInterface $roleHierarchy;
 
-    public function __construct(ExpressionLanguage $expressionLanguage, AuthenticationTrustResolverInterface $trustResolver, AuthorizationCheckerInterface $authChecker, RoleHierarchyInterface $roleHierarchy = null)
+    public function __construct(ExpressionLanguage $expressionLanguage, AuthenticationTrustResolverInterface $trustResolver, AuthorizationCheckerInterface $authChecker, ?RoleHierarchyInterface $roleHierarchy = null)
     {
         $this->expressionLanguage = $expressionLanguage;
         $this->trustResolver = $trustResolver;
diff --git a/Encoder/NativePasswordEncoder.php b/Encoder/NativePasswordEncoder.php
@@ -0,0 +1,38 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Encoder;
+
+use Symfony\Component\PasswordHasher\Hasher\NativePasswordHasher;
+
+trigger_deprecation('symfony/security-core', '5.3', 'The "%s" class is deprecated, use "%s" instead.', NativePasswordEncoder::class, NativePasswordHasher::class);
+
+/**
+ * Hashes passwords using password_hash().
+ *
+ * @author Elnur Abdurrakhimov <elnur@elnur.pro>
+ * @author Terje Bråten <terje@braten.be>
+ * @author Nicolas Grekas <p@tchwork.com>
+ *
+ * @deprecated since Symfony 5.3, use {@link NativePasswordHasher} instead
+ */
+final class NativePasswordEncoder implements PasswordEncoderInterface, SelfSaltingEncoderInterface
+{
+    use LegacyEncoderTrait;
+
+    /**
+     * @param string|null $algo An algorithm supported by password_hash() or null to use the stronger available algorithm
+     */
+    public function __construct(?int $opsLimit = null, ?int $memLimit = null, ?int $cost = null, ?string $algo = null)
+    {
+        $this->hasher = new NativePasswordHasher($opsLimit, $memLimit, $cost, $algo);
+    }
+}
diff --git a/Encoder/PasswordHasherAdapter.php b/Encoder/PasswordHasherAdapter.php
@@ -0,0 +1,46 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Encoder;
+
+use Symfony\Component\PasswordHasher\LegacyPasswordHasherInterface;
+
+/**
+ * Forward compatibility for new new PasswordHasher component.
+ *
+ * @author Alexander M. Turek <me@derrabus.de>
+ *
+ * @internal To be removed in Symfony 6
+ */
+final class PasswordHasherAdapter implements LegacyPasswordHasherInterface
+{
+    private $passwordEncoder;
+
+    public function __construct(PasswordEncoderInterface $passwordEncoder)
+    {
+        $this->passwordEncoder = $passwordEncoder;
+    }
+
+    public function hash(string $plainPassword, ?string $salt = null): string
+    {
+        return $this->passwordEncoder->encodePassword($plainPassword, $salt);
+    }
+
+    public function verify(string $hashedPassword, string $plainPassword, ?string $salt = null): bool
+    {
+        return $this->passwordEncoder->isPasswordValid($hashedPassword, $plainPassword, $salt);
+    }
+
+    public function needsRehash(string $hashedPassword): bool
+    {
+        return $this->passwordEncoder->needsRehash($hashedPassword);
+    }
+}
diff --git a/Encoder/SodiumPasswordEncoder.php b/Encoder/SodiumPasswordEncoder.php
@@ -0,0 +1,40 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Encoder;
+
+use Symfony\Component\PasswordHasher\Hasher\SodiumPasswordHasher;
+
+trigger_deprecation('symfony/security-core', '5.3', 'The "%s" class is deprecated, use "%s" instead.', SodiumPasswordEncoder::class, SodiumPasswordHasher::class);
+
+/**
+ * Hashes passwords using libsodium.
+ *
+ * @author Robin Chalas <robin.chalas@gmail.com>
+ * @author Zan Baldwin <hello@zanbaldwin.com>
+ * @author Dominik Müller <dominik.mueller@jkweb.ch>
+ *
+ * @deprecated since Symfony 5.3, use {@link SodiumPasswordHasher} instead
+ */
+final class SodiumPasswordEncoder implements PasswordEncoderInterface, SelfSaltingEncoderInterface
+{
+    use LegacyEncoderTrait;
+
+    public function __construct(?int $opsLimit = null, ?int $memLimit = null)
+    {
+        $this->hasher = new SodiumPasswordHasher($opsLimit, $memLimit);
+    }
+
+    public static function isSupported(): bool
+    {
+        return SodiumPasswordHasher::isSupported();
+    }
+}
diff --git a/Exception/AccessDeniedException.php b/Exception/AccessDeniedException.php
@@ -24,7 +24,7 @@ class AccessDeniedException extends RuntimeException
     private array $attributes = [];
     private mixed $subject = null;
 
-    public function __construct(string $message = 'Access Denied.', \Throwable $previous = null, int $code = 403)
+    public function __construct(string $message = 'Access Denied.', ?\Throwable $previous = null, int $code = 403)
     {
         parent::__construct($message, $code, $previous);
     }
diff --git a/Exception/AuthenticationException.php b/Exception/AuthenticationException.php
@@ -28,7 +28,7 @@ class AuthenticationException extends RuntimeException
 
     private ?TokenInterface $token = null;
 
-    public function __construct(string $message = '', int $code = 0, \Throwable $previous = null)
+    public function __construct(string $message = '', int $code = 0, ?\Throwable $previous = null)
     {
         unset($this->serialized);
         parent::__construct($message, $code, $previous);
diff --git a/Exception/CustomUserMessageAccountStatusException.php b/Exception/CustomUserMessageAccountStatusException.php
@@ -26,7 +26,7 @@ class CustomUserMessageAccountStatusException extends AccountStatusException
     private string $messageKey;
     private array $messageData = [];
 
-    public function __construct(string $message = '', array $messageData = [], int $code = 0, \Throwable $previous = null)
+    public function __construct(string $message = '', array $messageData = [], int $code = 0, ?\Throwable $previous = null)
     {
         parent::__construct($message, $code, $previous);
 
diff --git a/Exception/CustomUserMessageAuthenticationException.php b/Exception/CustomUserMessageAuthenticationException.php
@@ -25,7 +25,7 @@ class CustomUserMessageAuthenticationException extends AuthenticationException
     private string $messageKey;
     private array $messageData = [];
 
-    public function __construct(string $message = '', array $messageData = [], int $code = 0, \Throwable $previous = null)
+    public function __construct(string $message = '', array $messageData = [], int $code = 0, ?\Throwable $previous = null)
     {
         parent::__construct($message, $code, $previous);
 
diff --git a/Exception/LogoutException.php b/Exception/LogoutException.php
@@ -18,7 +18,7 @@
  */
 class LogoutException extends RuntimeException
 {
-    public function __construct(string $message = 'Logout Exception', \Throwable $previous = null)
+    public function __construct(string $message = 'Logout Exception', ?\Throwable $previous = null)
     {
         parent::__construct($message, 403, $previous);
     }
diff --git a/Exception/TooManyLoginAttemptsAuthenticationException.php b/Exception/TooManyLoginAttemptsAuthenticationException.php
@@ -21,7 +21,7 @@ class TooManyLoginAttemptsAuthenticationException extends AuthenticationExceptio
 {
     private ?int $threshold;
 
-    public function __construct(int $threshold = null)
+    public function __construct(?int $threshold = null)
     {
         $this->threshold = $threshold;
     }
diff --git a/Signature/SignatureHasher.php b/Signature/SignatureHasher.php
@@ -35,7 +35,7 @@ class SignatureHasher
      * @param ExpiredSignatureStorage|null $expiredSignaturesStorage If provided, secures a sequence of hashes that are expired
      * @param int|null                     $maxUses                  Used together with $expiredSignatureStorage to allow a maximum usage of a hash
      */
-    public function __construct(PropertyAccessorInterface $propertyAccessor, array $signatureProperties, #[\SensitiveParameter] string $secret, ExpiredSignatureStorage $expiredSignaturesStorage = null, int $maxUses = null)
+    public function __construct(PropertyAccessorInterface $propertyAccessor, array $signatureProperties, #[\SensitiveParameter] string $secret, ?ExpiredSignatureStorage $expiredSignaturesStorage = null, ?int $maxUses = null)
     {
         $this->propertyAccessor = $propertyAccessor;
         $this->signatureProperties = $signatureProperties;
diff --git a/Tests/Authentication/Token/AbstractTokenTest.php b/Tests/Authentication/Token/AbstractTokenTest.php
@@ -98,7 +98,7 @@ class ConcreteToken extends AbstractToken
 {
     private $credentials = 'credentials_value';
 
-    public function __construct(array $roles = [], UserInterface $user = null)
+    public function __construct(array $roles = [], ?UserInterface $user = null)
     {
         parent::__construct($roles);
 
diff --git a/Validator/Constraints/UserPassword.php b/Validator/Constraints/UserPassword.php
@@ -29,7 +29,7 @@ class UserPassword extends Constraint
     public $message = 'This value should be the user\'s current password.';
     public $service = 'security.validator.user_password';
 
-    public function __construct(array $options = null, string $message = null, string $service = null, array $groups = null, mixed $payload = null)
+    public function __construct(?array $options = null, ?string $message = null, ?string $service = null, ?array $groups = null, mixed $payload = null)
     {
         parent::__construct($options, $groups, $payload);
 

Original file line number	Diff line number	Diff line change
`@@ -21,17 +21,17 @@`
`21`	`21`	`*/`
`22`	`22`	`class AuthenticationTrustResolver implements AuthenticationTrustResolverInterface`
`23`	`23`	`{`
`24`		`- public function isAuthenticated(TokenInterface $token = null): bool`
	`24`	`+ public function isAuthenticated(?TokenInterface $token = null): bool`
`25`	`25`	`{`
`26`	`26`	`return $token && $token->getUser();`
`27`	`27`	`}`
`28`	`28`
`29`		`- public function isRememberMe(TokenInterface $token = null): bool`
	`29`	`+ public function isRememberMe(?TokenInterface $token = null): bool`
`30`	`30`	`{`
`31`	`31`	`return $token && $token instanceof RememberMeToken;`
`32`	`32`	`}`
`33`	`33`
`34`		`- public function isFullFledged(TokenInterface $token = null): bool`
	`34`	`+ public function isFullFledged(?TokenInterface $token = null): bool`
`35`	`35`	`{`
`36`	`36`	`return $this->isAuthenticated($token) && !$this->isRememberMe($token);`
`37`	`37`	`}`
Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,7 @@ public function getToken(): ?TokenInterface`
`40`	`40`	`/**`
`41`	`41`	`* @return void`
`42`	`42`	`*/`
`43`		`- public function setToken(TokenInterface $token = null)`
	`43`	`+ public function setToken(?TokenInterface $token = null)`
`44`	`44`	`{`
`45`	`45`	`if (1 > \func_num_args()) {`
`46`	`46`	`trigger_deprecation('symfony/security-core', '6.2', 'Calling "%s()" without any arguments is deprecated, pass null explicitly instead.', __METHOD__);`
Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ public function getToken(): ?TokenInterface`
`44`	`44`	`return $this->storage->getToken();`
`45`	`45`	`}`
`46`	`46`
`47`		`- public function setToken(TokenInterface $token = null): void`
	`47`	`+ public function setToken(?TokenInterface $token = null): void`
`48`	`48`	`{`
`49`	`49`	`$this->storage->setToken($token);`
`50`	`50`
Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ class SwitchUserToken extends UsernamePasswordToken`
`29`	`29`	`*`
`30`	`30`	`* @throws \InvalidArgumentException`
`31`	`31`	`*/`
`32`		`- public function __construct(UserInterface $user, string $firewallName, array $roles, TokenInterface $originalToken, string $originatedFromUri = null)`
	`32`	`+ public function __construct(UserInterface $user, string $firewallName, array $roles, TokenInterface $originalToken, ?string $originatedFromUri = null)`
`33`	`33`	`{`
`34`	`34`	`parent::__construct($user, $firewallName, $roles);`
`35`	`35`
Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,7 @@ final class AccessDecisionManager implements AccessDecisionManagerInterface`
`40`	`40`	`/**`
`41`	`41`	`* @param iterable<mixed, VoterInterface> $voters An array or an iterator of VoterInterface instances`
`42`	`42`	`*/`
`43`		`- public function __construct(iterable $voters = [], AccessDecisionStrategyInterface $strategy = null)`
	`43`	`+ public function __construct(iterable $voters = [], ?AccessDecisionStrategyInterface $strategy = null)`
`44`	`44`	`{`
`45`	`45`	`$this->voters = $voters;`
`46`	`46`	`$this->strategy = $strategy ?? new AffirmativeStrategy();`
Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ class_exists(ExpressionLanguageProvider::class);`
`29`	`29`	`*/`
`30`	`30`	`class ExpressionLanguage extends BaseExpressionLanguage`
`31`	`31`	`{`
`32`		`- public function __construct(CacheItemPoolInterface $cache = null, array $providers = [])`
	`32`	`+ public function __construct(?CacheItemPoolInterface $cache = null, array $providers = [])`
`33`	`33`	`{`
`34`	`34`	`// prepend the default provider to let users override it easily`
`35`	`35`	`array_unshift($providers, new ExpressionLanguageProvider());`
Original file line number	Diff line number	Diff line change
`@@ -31,7 +31,7 @@ class ExpressionVoter implements CacheableVoterInterface`
`31`	`31`	`private AuthorizationCheckerInterface $authChecker;`
`32`	`32`	`private ?RoleHierarchyInterface $roleHierarchy;`
`33`	`33`
`34`		`- public function __construct(ExpressionLanguage $expressionLanguage, AuthenticationTrustResolverInterface $trustResolver, AuthorizationCheckerInterface $authChecker, RoleHierarchyInterface $roleHierarchy = null)`
	`34`	`+ public function __construct(ExpressionLanguage $expressionLanguage, AuthenticationTrustResolverInterface $trustResolver, AuthorizationCheckerInterface $authChecker, ?RoleHierarchyInterface $roleHierarchy = null)`
`35`	`35`	`{`
`36`	`36`	`$this->expressionLanguage = $expressionLanguage;`
`37`	`37`	`$this->trustResolver = $trustResolver;`