From 0aedbd7fd7c0613622b32c3829f909433bfa974c Mon Sep 17 00:00:00 2001 From: Yassine Guedidi Date: Mon, 10 Mar 2025 23:09:48 +0100 Subject: [PATCH] Add IsGranted to FeedController --- app/config/security.yml | 2 +- src/Controller/FeedController.php | 6 ++++++ 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/app/config/security.yml b/app/config/security.yml index 05400966d..118d82279 100644 --- a/app/config/security.yml +++ b/app/config/security.yml @@ -70,7 +70,7 @@ security: - { path: /(unread|starred|archive|annotated|all).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY } - { path: ^/locale, role: IS_AUTHENTICATED_ANONYMOUSLY } - { path: /tags/(.*).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY } - - { path: ^/feed, roles: IS_AUTHENTICATED_ANONYMOUSLY } + - { path: ^/feed, roles: PUBLIC_ACCESS } - { path: /(unread|starred|archive|annotated).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY } # For backwards compatibility - { path: ^/share, roles: IS_AUTHENTICATED_ANONYMOUSLY } - { path: ^/settings, roles: ROLE_SUPER_ADMIN } diff --git a/src/Controller/FeedController.php b/src/Controller/FeedController.php index b7e9f116a..f650274f3 100644 --- a/src/Controller/FeedController.php +++ b/src/Controller/FeedController.php @@ -6,6 +6,7 @@ use Pagerfanta\Adapter\ArrayAdapter; use Pagerfanta\Doctrine\ORM\QueryAdapter as DoctrineORMAdapter; use Pagerfanta\Exception\OutOfRangeCurrentPageException; use Pagerfanta\Pagerfanta; +use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted; use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter; use Symfony\Component\HttpFoundation\Request; use Symfony\Component\HttpFoundation\Response; @@ -30,6 +31,7 @@ class FeedController extends AbstractController * Shows unread entries for current user. * * @Route("/feed/{username}/{token}/unread/{page}", name="unread_feed", methods={"GET"}, defaults={"page"=1, "_format"="xml"}) + * @IsGranted("PUBLIC_ACCESS") * * @ParamConverter("user", class="Wallabag\Entity\User", converter="username_feed_token_converter") * @@ -44,6 +46,7 @@ class FeedController extends AbstractController * Shows read entries for current user. * * @Route("/feed/{username}/{token}/archive/{page}", name="archive_feed", methods={"GET"}, defaults={"page"=1, "_format"="xml"}) + * @IsGranted("PUBLIC_ACCESS") * * @ParamConverter("user", class="Wallabag\Entity\User", converter="username_feed_token_converter") * @@ -58,6 +61,7 @@ class FeedController extends AbstractController * Shows starred entries for current user. * * @Route("/feed/{username}/{token}/starred/{page}", name="starred_feed", methods={"GET"}, defaults={"page"=1, "_format"="xml"}) + * @IsGranted("PUBLIC_ACCESS") * * @ParamConverter("user", class="Wallabag\Entity\User", converter="username_feed_token_converter") * @@ -72,6 +76,7 @@ class FeedController extends AbstractController * Shows all entries for current user. * * @Route("/feed/{username}/{token}/all/{page}", name="all_feed", methods={"GET"}, defaults={"page"=1, "_format"="xml"}) + * @IsGranted("PUBLIC_ACCESS") * * @ParamConverter("user", class="Wallabag\Entity\User", converter="username_feed_token_converter") * @@ -86,6 +91,7 @@ class FeedController extends AbstractController * Shows entries associated to a tag for current user. * * @Route("/feed/{username}/{token}/tags/{slug}/{page}", name="tag_feed", methods={"GET"}, defaults={"page"=1, "_format"="xml"}) + * @IsGranted("PUBLIC_ACCESS") * * @ParamConverter("user", class="Wallabag\Entity\User", converter="username_feed_token_converter") * @ParamConverter("tag", options={"mapping": {"slug": "slug"}})