IBX-8140: Enabled authenticator manager-based security

konradoboza · konradoboza · commit 24932c8da3a9 · 2024-05-14T12:44:08.000+02:00
diff --git a/phpstan-baseline.neon b/phpstan-baseline.neon
@@ -8210,6 +8210,11 @@ parameters:
 			count: 1
 			path: src/lib/Notification/TranslatableNotificationHandler.php
 
+		-
+			message: "#^Cannot access offset mixed on iterable\\<Ibexa\\\\Contracts\\\\Core\\\\Repository\\\\Values\\\\ContentType\\\\ContentType\\>\\.$#"
+			count: 1
+			path: src/lib/Pagination/Mapper/AbstractPagerContentToDataMapper.php
+
 		-
 			message: "#^Method Ibexa\\\\AdminUi\\\\Pagination\\\\Mapper\\\\AbstractPagerContentToDataMapper\\:\\:setTranslatedContentTypesNames\\(\\) has parameter \\$data with no value type specified in iterable type array\\.$#"
 			count: 1
diff --git a/src/bundle/Controller/ContentViewController.php b/src/bundle/Controller/ContentViewController.php
@@ -158,6 +158,8 @@ public function __construct(
      */
     public function locationViewAction(Request $request, ContentView $view): ContentView
     {
+        $this->performAccessCheck();
+
         // We should not cache ContentView because we use forms with CSRF tokens in template
         // JIRA ref: https://issues.ibexa.co/browse/EZP-28190
         $view->setCacheEnabled(false);

Original file line number	Diff line number	Diff line change
`@@ -158,6 +158,8 @@ public function __construct(`
`158`	`158`	`*/`
`159`	`159`	`public function locationViewAction(Request $request, ContentView $view): ContentView`
`160`	`160`	`{`
	`161`	`+ $this->performAccessCheck();`
	`162`	`+`
`161`	`163`	`// We should not cache ContentView because we use forms with CSRF tokens in template`
`162`	`164`	`// JIRA ref: https://issues.ibexa.co/browse/EZP-28190`
`163`	`165`	`$view->setCacheEnabled(false);`