Chapters

37 Chapters | 3:43:31 |

01

¿Documentos API en producción?

8:22
02

¿Token API? ¿Cookies de sesión?

8:07
03

Formulario de inicio de sesión API con json_login

5:36
04

Manejo de errores de autenticación

3:47
05

En Autenticación correcta

6:03
06

Cerrar sesión y pasar datos de la API a JavaScript

5:45
07

Pasar valores a Stimulus

4:32
08

Tipos de token y la entidad ApiToken

5:59
09

Generar el token de la API y los accesorios

5:58
10

Autenticador de token de acceso

8:56
11

Personalizar los documentos de OpenAPI

7:31
12

Ámbitos de los tokens de la API

5:51
13

Denegar el acceso con la opción "seguridad

7:11
14

Poner en marcha un sistema de pruebas asesino

8:18
15

Aserciones de la prueba JSON y siembra de la base de datos

3:41
16

Aserciones de prueba JSON avanzadas y flexibles

4:04
17

Probar la autenticación

4:59
18

Personalizar el navegador globalmente

3:50
19

Probar la autenticación por token

3:24
20

Nuevo comportamiento PUT

4:46
21

Permitir editar sólo a los propietarios

7:49
22

Permitir que los usuarios administradores editen cualquier tesoro

4:11
23

Votante de seguridad

6:13
24

Campos condicionales por usuario: ApiProperty

5:13
25

Prueba de Usuario + Contraseña Simple

4:21
26

Procesadores de Estado: Hashing de la contraseña de usuario

6:55
27

Grupos de validación y formatos de parche

8:01
28

Grupos Dinámicos: Creador de Contextos

8:26
29

Normalizador personalizado

5:08
30

Decoración del normalizador y "Normalizer Aware" (consciente del normalizador)

6:29
31

Campos totalmente personalizados

3:24
32

Validador personalizado

7:58
33

Validar cómo cambian los valores

8:30
34

Configuración automática del "propietario

4:19
35

Extensión de consulta: Autofiltrar una colección

6:15
36

404 En Artículos No Publicados

8:00
37

Filtrar la colección de relaciones

5:39

> APIs > API Platform 3: Seguridad para tus tesoros

Buy Access to Course

30.

Decoración del normalizador y "Normalizer Aware" (consciente del normalizador)

Autoplay

Keep on Learning!

If you liked what you've learned so far, dive in! Subscribe to get
access to this tutorial plus video, code and script downloads.

Start your All-Access Pass

Buy just this tutorial for $12.00

Previous Chapter

Next Chapter

With a Subscription, click any sentence in the script to jump to that part of the video!

Nuestra misión es clara: configurar nuestro normalizador para que decore el servicio normalizador del núcleo de Symfony, de modo que podamos añadir el grupo owner:read cuando sea necesario y, a continuación, llamar al normalizador decorado.

Configuración para la decoración

¡Y ya conocemos la decoración! Añade public function __construct() conprivate NormalizerInterface $normalizer:

            Copy Code

                            Show All Lines

                        25 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 4
                            
            use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
        
            class AddOwnerGroupsNormalizer implements NormalizerInterface
        
            {
        
                public function __construct(private NormalizerInterface $normalizer)
        
                {
        
                }
        
                Show Lines

                                                    // ... lines 12 - 23
                            
            }

Abajo en normalize(), añade un dump() luego return $this->normalizer->normalize()pasando $object $format , y $context. Para supportsNormalization(), haz lo mismo: llama a supportsNormalization() en la clase decorada y pasa los args:

            Copy Code

                            Show All Lines

                        25 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 6
                            
            class AddOwnerGroupsNormalizer implements NormalizerInterface
        
            {
        
                Show Lines

                                                    // ... lines 9 - 12
                            
                public function normalize(mixed $object, string $format = null, array $context = []): array|string|int|float|bool|\ArrayObject|null
        
                {
        
                    dump('IT WORKS!');
        
                    return $this->normalizer->normalize($object, $format, $context);
        
                }
        
                public function supportsNormalization(mixed $data, string $format = null, array $context = []): bool
        
                {
        
                    return $this->normalizer->supportsNormalization($data, $format);
        
                }
        
            }

Para completar la decoración, dirígete a la parte superior de la clase. Quitaré unas cuantas declaraciones antiguas use... y luego diré #[AsDecorator] pasando serializer, que ya he mencionado que es el id de servicio para el normalizador principal de nivel superior:

            Copy Code

                            Show All Lines

                        27 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 4
                            
            use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
        
                Show Lines

                                                    // ... lines 6 - 7
                            
            #[AsDecorator('serializer')]
        
            class AddOwnerGroupsNormalizer implements NormalizerInterface
        
            {
        
                Show Lines

                                                    // ... lines 11 - 25
                            
            }

¡Vale! Aún no hemos hecho ningún cambio... así que deberíamos seguir viendo la única prueba que falla. Pruébalo:

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedField

¡Woh! ¡Una explosión! Guau.

ValidationExceptionListener::__construct(): El argumento nº 1 ($serializer) debe ser de tipo SerializerInterface, AddOwnerGroupsNormalizer dado.

¿De acuerdo? Cuando añadimos #[AsDecorator('serializer')], significa que nuestro servicio sustituye al servicio conocido como serializer. Así, todos los que dependen del servicio serializer pasarán ahora a nosotros... y luego elserializer original se pasa a nuestro constructor.

Entonces, ¿cuál es el problema? La decoración ya ha funcionado varias veces. El problema es que el servicio serializer de Symfony es... un poco grande. ImplementaNormalizerInterface, ¡pero también DenormalizerInterface, EncoderInterface,DecoderInterface y SerializerInterface! Pero nuestro objeto sólo implementa uno de ellos. Y así, cuando nuestra clase se pasa a algo que espera un objeto con una de esas otras 4 interfaces, explota.

Si de verdad quisiéramos decorar el servicio serializer, tendríamos que implementar las cinco interfaces... lo cual es feo y demasiado. ¡Y no pasa nada!

Decorar un normalizador de nivel inferior

En lugar de decorar el nivel superior normalizer, vamos a decorar un normalizador concreto: el que se encarga de normalizar los objetos ApiResource enJSON-LD. Éste es otro punto en el que puedes confiar en la documentación para que te dé el ID de servicio exacto que necesitas. Es api_platform.jsonld.normalizer.item:

            Copy Code

                            Show All Lines

                        27 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 4
                            
            use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
        
                Show Lines

                                                    // ... lines 6 - 7
                            
            #[AsDecorator('api_platform.jsonld.normalizer.item')]
        
            class AddOwnerGroupsNormalizer implements NormalizerInterface
        
            {
        
                Show Lines

                                                    // ... lines 11 - 25
                            
            }

Vuelve a hacer la prueba: testOwnerCanSeeIsPublishedField

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedField

¡Sí! ¡Vemos nuestro volcado! Y... ¿un error 400? Déjame abrir la respuesta para que podamos verla. Extraño:

El serializador inyectado debe ser una instancia de NormalizerInterface.

Y procede de lo más profundo del código del serializador de API Platform. Así que... decorar normalizadores no es un proceso muy amigable. Está bien documentado, pero es raro. Cuando decoras este normalizador específico, también tienes que implementarSerializerAwareInterface. Y eso va a requerir que tengas un método setSerializer(). Oh, déjame importar esa declaración use: No sé por qué no ha aparecido automáticamente:

            Copy Code

                            Show All Lines

                        36 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 6
                            
            use Symfony\Component\Serializer\SerializerAwareInterface;
        
                Show Lines

                                                    // ... lines 8 - 10
                            
            class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
        
            {
        
                Show Lines

                                                    // ... lines 13 - 28
                            
                public function setSerializer(SerializerInterface $serializer)
        
                {
        
                Show Lines

                                                    // ... lines 31 - 33
                            
                }
        
            }

Ya está.

Dentro, digamos, si $this->normalizer es un instanceof SerializerAwareInterface, entonces llama a $this->normalizer->setSerializer($serializer):

            Copy Code

                            Show All Lines

                        36 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 10
                            
            class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
        
            {
        
                Show Lines

                                                    // ... lines 13 - 28
                            
                public function setSerializer(SerializerInterface $serializer)
        
                {
        
                    if ($this->normalizer instanceof SerializerAwareInterface) {
        
                        $this->normalizer->setSerializer($serializer);
        
                    }
        
                }
        
            }

Ni siquiera quiero entrar en los detalles de esto: lo que ocurre es que el normalizador que estamos decorando implementa otra interfaz... así que también tenemos que implementarla.

Intentémoslo de nuevo.

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedField

Por último, tenemos el volcado y falla la aserción que esperamos... puesto que aún no hemos añadido el grupo. ¡Hagámoslo!

Añadir el grupo dinámico

Recuerda el objetivo: si poseemos este DragonTreasure, queremos añadir el grupo owner:read. En el constructor, autocablea el servicio Security como una propiedad:

            Copy Code

                            Show All Lines

                        40 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 5
                            
            use Symfony\Bundle\SecurityBundle\Security;
        
                Show Lines

                                                    // ... lines 7 - 12
                            
            class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
        
            {
        
                public function __construct(private NormalizerInterface $normalizer, private Security $security)
        
                {
        
                }
        
                Show Lines

                                                    // ... lines 18 - 38
                            
            }

Entonces, aquí abajo, si $object es un instanceof DragonTreasure -porque este método se llamará para todas nuestras clases de recursos API- y $this->security->getUser()es igual a $object->getOwner(), entonces llama a $context['groups'][] para añadirowner:read:

            Copy Code

                            Show All Lines

                        40 lines
            |
            src/Normalizer/AddOwnerGroupsNormalizer.php
        
                Show Lines

                                                    // ... lines 1 - 4
                            
            use App\Entity\DragonTreasure;
        
                Show Lines

                                                    // ... lines 6 - 12
                            
            class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
        
            {
        
                Show Lines

                                                    // ... lines 15 - 18
                            
                public function normalize(mixed $object, string $format = null, array $context = []): array|string|int|float|bool|\ArrayObject|null
        
                {
        
                    if ($object instanceof DragonTreasure && $this->security->getUser() === $object->getOwner()) {
        
                        $context['groups'][] = 'owner:read';
        
                    }
        
                Show Lines

                                                    // ... lines 24 - 25
                            
                }
        
                Show Lines

                                                    // ... lines 27 - 38
                            
            }

¡Uf! Intenta esa prueba una vez más:

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedField

¡Lo hemos conseguido! Ahora podemos devolver diferentes campos objeto por objeto.

Decorar también el desnormalizador

Si quieres añadir también owner:write durante la desnormalización, tendrías que implementar una segunda interfaz. No voy a hacerlo entero... pero implementarías DenormalizerInterface, añadirías los dos métodos necesarios, llamarías al servicio decorado... y cambiarías el argumento para que fuera un tipo de unión deNormalizerInterface y DenormalizerInterface.

Por último, el servicio que estás decorando para la desnormalización es diferente: esapi_platform.serializer.normalizer.item. Sin embargo, si quieres decorar tanto el normalizador como el desnormalizador en la misma clase, tendrías que eliminar#[AsDecorator] y mover la configuración de la decoración a services.yaml... porque un único servicio no puede decorar dos cosas a la vez. API Platform lo explica en sus documentos.

De acuerdo, voy a deshacer todo eso... y limitarme a añadir owner:read. A continuación: ahora que tenemos un normalizador personalizado, podemos hacer fácilmente locuras como añadir un campo totalmente personalizado a nuestra API que no existe en nuestra clase.

8 Comments

Sort By

ulfgar-hammerschlag 1 year ago

Hey there :)

Could you briefly explain the difference between our two approaches to add dynamic groups?

For the admin:read and admin:write, we decorated the context builder. Got the security, checked out, if user is admin and added the groups.

For the owner:read, we now decorated the NormalizerInterface and same here: Got the security, checked if user === owner and added the groups.

My question is:
Could we also add the adminGroups in the AddOwnerGroupsNormalizer (of course it needs a new name then)? (I think we could?)
Could we also add the owner:read group in the context builder? (We can, but then it's not DragonTreasure related?)

Theoretically, the contextbuilder is triggered before the normalizer, because if "is responsible for building the normalization or denormalization contexts that are then passed into the serializer"
And there our custom Normalizer is used used.

So to sum this up:
When is it necessary to add a dynamic group in the ContextBuilder, and when is it necessary to add it in the normalization process?

Because we can't refer to the ApiEntity/Object in the ContextBuilder?

1 | Reply |

aratinau 2 years ago

Hello,

I'm trying to make a denormalizer but I don't fit in it while I fit well in if ($this->denormalizer instanceof DenormalizerInterface) {
Thanks for your help


namespace App\Serializer;

use App\Entity\DragonTreasure;
use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
use Symfony\Component\Serializer\Normalizer\DenormalizerAwareInterface;
use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;

#[AsDecorator('api_platform.serializer.normalizer.item')]
class PlainIdentifierDenormalizer implements /*NormalizerInterface, */ DenormalizerInterface, DenormalizerAwareInterface
{
    public function __construct(
        private DenormalizerInterface $denormalizer,
    ) {
    }

    public function setDenormalizer(DenormalizerInterface $denormalizer)
    {
        if ($this->denormalizer instanceof DenormalizerInterface) {
            $this->denormalizer->setSerializer($denormalizer);
        }
    }

    public function denormalize(mixed $data, string $type, string $format = null, array $context = [])
    {
        dd('yes');
    }

    public function supportsDenormalization(mixed $data, string $type, string $format = null)
    {
        dd('ok');
        return $this->denormalizer->supportsDenormalization($data, $format);
    }
}

1 | Reply |

MolloKhan SFCASTS aratinau 2 years ago edited

Hey @aratinau

I believe you're decorating the wrong service, this is the service you should decorate api_platform.jsonld.normalizer.item

Cheers!

| Reply |

Joris-Mak 1 year ago

I doubt if this is the way to go.

From the Symfony docs to create a custom Normalizer (https://symfony.com/doc/6.4/serializer/custom_normalizer.html#creating-a-new-normalizer):

Injecting an ObjectNormalizer in your custom normalizer is deprecated since Symfony 6.1. Implement the NormalizerAwareInterface and use the NormalizerAwareTrait instead to inject the $normalizer property.

So even the maker-bundle (Which I might not have updated to the latest version since I used the starting project from this tutorial) has a make:serializer:normalizer that isn't 100% correct for Symfony these days.

Create a class, make it implement NormalizerInterface, and also make it implement NormalizerAwareInterface.
Make it use the NormalizerAwareTrait, by adding a use NormalizerAwareTrait; in the top of the class. This is now already enough to have a copy of the 'normal' normalizer available as $this->normalizer.
Implement the required methods (normalize(), supportsNormalization() and also the newer getSupportedTypes()).
Let's start with supportsNormalization(). We want to work on data, if data is a DragonTreasure. So a simple return $data instanceof DragonTreasure seems like it will be enough. It's not, but we'll get back to that.
Now getSupportedTypes(). We must answer what we support and if it's cacheable or not. Now, it seems that we can say we always support $data of type DragonTreasure. Again, this is not true :), but we'll get back to that. For now, let's say it is: return [ DragonTreasure::class => true ];
Now the real normalize() method. Just like decorating a service, we call the normal normalizer we received from the NormalizerAwareTrait. So we start with a simple return $this->normalizer->normalize($object, $format, $context);.

If you try this... you'll notice your application / tests will really crash. Yes, crash. A segfault, or you will see 'it is killed'.
Why?

The serializer checks if we support a DragonTreaure. We do, so our normalize() method gets called. But in that method, we call the normal normalizer to do the business. What does it do? It will check for available normalizers. It will find 'us', we say 'yes, we support that DragonTreasure object', and our normalize() method gets called. And again, and again and again, and boom.

What we need to do, is somehow make sure we only do our normalizer only once per object.
This is pretty simple. In the first line of normalize(), we adjust the $context and set something in it, that will tell us that we already handled it. We can set all kind of things in the $context, but a little convention of myself is to set the array key of my class-string to true. So, above the return statement in normalize() add a line:

$context[self::class] = true;

Now, in supportsNormalization(), we need to say we only support this object if we didn't handle it before.
So, change the return line to:

return $data instanceof DragonTreasure && !isset($context[self::class]);

The last problem we have now, is that in getSupportedTypes() we told that our supportsNormalization() method is cacheable. But since we now have a check for the $context, it's not. So change getSupportedTypes() to be:

return [ DragonTreaure::class => false ];

Now, we have a normalizer that isn't a decorated service, gets only called for DragonTreasure objects and only gets called once.

Ready to do te job we were here for. Under the $context[self::class] = true; line in normalize(), we're going to check if the current user is the owner for this DragonTreasure. If it is, we add 'owner:read' to the $context['groups']. After that, we're going to call the 'normal' normalizer, to do its thing like it normally would. Since we now have the proper groups set, the proper properties will show up in the object.

public function normalize(....)
{
    $context[self::class] = true;
    
    assert($object instanceof DragonTreasure); // Help our IDE to know what kind of object this is
    
    // Don't forget to inject the Security service in your constructor
    $user = $this->security->getUser();
    
    if ($object->getOwner() === $user) {
        // As Ryan did in the previous chapter, check if 'groups' is really set.
        // Otherwise, we won't touch it, just to be sure.
        
        if (isset($context['groups'])) {
            $context['groups'][] = 'owner:read';
        }
    }
    
    // Let the normal normalizer do its thing
    return $this->normalizer->normalize($object, $format, $context);
 }

I'll summarize my final normalizer, including strict typing for phpstan:

<?php

namespace App\Serializer\Normalizer;

use App\Entity\DragonTreasure;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
use Symfony\Component\Serializer\Normalizer\NormalizerInterface;

class AddOwnerGroupsNormalizer implements NormalizerInterface, NormalizerAwareInterface
{
    use NormalizerAwareTrait;

    public function __construct(
        private readonly Security $security
    ) {
    }

    /**
     * @param array<string,mixed> $context
     *
     * @return array<int|string,mixed>|string|int|float|bool|\ArrayObject<int|string,mixed>|null
     */
    public function normalize($object, string $format = null, array $context = []): array|string|int|float|bool|\ArrayObject|null
    {
        // Mark in the context that we already handled this object, don't do it again
        $context[self::class] = true;

        assert($object instanceof DragonTreasure);

        $user = $this->security->getUser();

        if ($object->getOwner() === $user) {
            // This object is owned by the current user.
            // Add owner:read to the groups before handing of to the normal normalizer
            if (isset($context['groups'])) {
                $context['groups'][] = 'owner:read';
            }
        }

        // Hand it over to the normal normalizer like usual
        $data = $this->normalizer->normalize($object, $format, $context);

        return $data;
    }

    /**
     * @param array<string,mixed> $context
     */
    public function supportsNormalization($data, string $format = null, array $context = []): bool
    {
        // We only support it if it's a DragonTreasure, and if we didn't handle it before
        return $data instanceof DragonTreasure && !isset($context[self::class]);
    }

    /**
     * @return array<class-string|'*'|'object'|string, bool|null>
     */
    public function getSupportedTypes(?string $format): array
    {
        return [
            DragonTreasure::class => false,
        ];
    }
}

If someone knows a way to keep the supportsNormalization() call cacheable, it would be nicer. Maybe just accept it and make it cacheable, and in the normalize() call just return $data as is, if we handled the object before? I'm just thinking out loud here, no clue if this will work. The above code does, and also seems easier to extend to a denormalizer as well.

| Reply |

Dhd 1 year ago

I'm running into the following error trying to create a denormalizer. I can't seem to figure out the cause.

Circular reference detected for service "api_platform.serializer.normalizer.validation_exception", path: "api_platform.serializer.normalizer.validation_exception -> Ap <br /> p\Normalizer\AddOwnerGroupsDenormalizer -> debug.serializer -> debug.serializer.inner -> api_platform.serializer.normalizer.validation_exception".

Any idea as to what might be happening?

Here's my code:


namespace App\Normalizer;

use App\Entity\User;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
use Symfony\Component\Serializer\Normalizer\DenormalizerAwareInterface;
use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
use Symfony\Component\Serializer\Normalizer\NormalizerInterface;


#[AsDecorator('api_platform.serializer.normalizer.item')]
class AddOwnerGroupsDenormalizer implements DenormalizerInterface, DenormalizerAwareInterface
{
    public function __construct(private NormalizerInterface|DenormalizerInterface $denormalize, private Security $security)
    {
    }

    public function denormalize(mixed $data, string $type, ?string $format = null, array $context = []): mixed
    {
        if ($data instanceof User && $this->security->getUser() === $data) {
            $context['groups'][] = 'owner:write';
        }

        return $this->denormalize->denormalize($data, $type, $format, $context);
    }

    public function supportsDenormalization(mixed $data, string $type, ?string $format = null, array $context = []): bool
    {
        return $this->denormalize->supportsDenormalization($data, $type, $format, $context);
    }

    public function setDenormalizer(DenormalizerInterface $denormalizer): void
    {
        if ($this->denormalize instanceof DenormalizerAwareInterface) {
            $this->denormalize->setDenormalizer($denormalizer);
        }
    }

    public function getSupportedTypes(?string $format): array
    {
        return [
            User::class => true,
        ];
    }
}

| Reply |

MolloKhan SFCASTS Dhd 1 year ago edited

Hey @Dhd

It seems like you're decorating the main Normalizer service, so when Symfony autowire your class AddOwnerGroupsDenormalizer it's injecting another instance of that same class, hence the circular reference. Try specifying what Normalizer you want in your constructor, you can use the "inner" service like this

    public function __construct(
        #[AutowireDecorated]
        private NormalizerInterface|DenormalizerInterface $denormalize,
    ) {
    }

You can read more about decorating services in Symfony here: https://symfony.com/doc/current/service_container/service_decoration.html

Cheers!

| Reply |

Dhd MolloKhan 1 year ago edited

<?php

namespace App\Normalizer;
use App\ApiResource\CompanyApi;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
use Symfony\Component\DependencyInjection\Attribute\AutowireDecorated;
use Symfony\Component\Serializer\Normalizer\DenormalizerAwareInterface;
use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;

#[AsDecorator('api_platform.serializer.normalizer.item')]
class CompanyOwnerDeNormalizer implements DenormalizerInterface, DenormalizerAwareInterface
{

    public function __construct(
        #[AutowireDecorated]
        private NormalizerInterface|DenormalizerInterface $denormalizer,
        private Security $security
    ) {
    }

    public function denormalize(mixed $data, string $type, ?string $format = null, array $context = []): mixed
    {
        dd('works');
        return $this->denormalizer->denormalize($data, $type, $format, $context);
    }
    public function supportsDenormalization(mixed $data, string $type, ?string $format = null, array $context = []): bool
    {
        return $this->denormalizer->supportsDenormalization($data, $format);
    }

    public function setDenormalizer(DenormalizerInterface $denormalizer): void
    {
        if ($this->denormalizer instanceof DenormalizerAwareInterface) {
            $this->denormalizer->setDenormalizer($denormalizer);
        }
    }

    public function getSupportedTypes(?string $format): array
    {
        return [
            CompanyApi::class => false
        ];
    }
}

The error I'm now getting is

ApiPlatform\Symfony\Validator\Serializer\ValidationExceptionNormalizer::__construct(): Argument #1 ($decorated) must be of type Symfony\Component\Serializer\Normalizer\NormalizerInterface, App\Normalizer\CompanyOwnerDeNormalizer given, called in /var/www/api/var/cache/dev/ContainerZ3bWSUF/App_KernelDevDebugContainer.php on line 1828

| Reply |

MolloKhan SFCASTS Dhd 1 year ago

Right, you're decorating the normalizer service so your class requires to implement the Normalizer interface

| Reply |

API Platform 3 Symfony 6.2

What PHP libraries does this tutorial use?

// composer.json
{
    "require": {
        "php": ">=8.2",
        "ext-ctype": "*",
        "ext-iconv": "*",
        "api-platform/core": "^3.0", // v3.1.2
        "doctrine/annotations": "^2.0", // 2.0.1
        "doctrine/doctrine-bundle": "^2.8", // 2.8.3
        "doctrine/doctrine-migrations-bundle": "^3.2", // 3.2.2
        "doctrine/orm": "^2.14", // 2.14.1
        "nelmio/cors-bundle": "^2.2", // 2.2.0
        "nesbot/carbon": "^2.64", // 2.66.0
        "phpdocumentor/reflection-docblock": "^5.3", // 5.3.0
        "phpstan/phpdoc-parser": "^1.15", // 1.16.1
        "symfony/asset": "6.2.*", // v6.2.5
        "symfony/console": "6.2.*", // v6.2.5
        "symfony/dotenv": "6.2.*", // v6.2.5
        "symfony/expression-language": "6.2.*", // v6.2.5
        "symfony/flex": "^2", // v2.2.4
        "symfony/framework-bundle": "6.2.*", // v6.2.5
        "symfony/property-access": "6.2.*", // v6.2.5
        "symfony/property-info": "6.2.*", // v6.2.5
        "symfony/runtime": "6.2.*", // v6.2.5
        "symfony/security-bundle": "6.2.*", // v6.2.6
        "symfony/serializer": "6.2.*", // v6.2.5
        "symfony/twig-bundle": "6.2.*", // v6.2.5
        "symfony/ux-react": "^2.6", // v2.7.1
        "symfony/ux-vue": "^2.7", // v2.7.1
        "symfony/validator": "6.2.*", // v6.2.5
        "symfony/webpack-encore-bundle": "^1.16", // v1.16.1
        "symfony/yaml": "6.2.*" // v6.2.5
    },
    "require-dev": {
        "doctrine/doctrine-fixtures-bundle": "^3.4", // 3.4.2
        "mtdowling/jmespath.php": "^2.6", // 2.6.1
        "phpunit/phpunit": "^9.5", // 9.6.3
        "symfony/browser-kit": "6.2.*", // v6.2.5
        "symfony/css-selector": "6.2.*", // v6.2.5
        "symfony/debug-bundle": "6.2.*", // v6.2.5
        "symfony/maker-bundle": "^1.48", // v1.48.0
        "symfony/monolog-bundle": "^3.0", // v3.8.0
        "symfony/phpunit-bridge": "^6.2", // v6.2.5
        "symfony/stopwatch": "6.2.*", // v6.2.5
        "symfony/web-profiler-bundle": "6.2.*", // v6.2.5
        "zenstruck/browser": "^1.2", // v1.2.0
        "zenstruck/foundry": "^1.26" // v1.28.0
    }
}

Previous Chapter

Next Chapter

Decoración del normalizador y "Normalizer Aware" (consciente del normalizador)

Share this awesome video!

Keep on Learning!

Configuración para la decoración

Decorar un normalizador de nivel inferior

Añadir el grupo dinámico

Decorar también el desnormalizador

8 Comments

Delete comment?

What PHP libraries does this tutorial use?

Show Lines	// ... lines 1 - 4
	use Symfony\Component\Serializer\Normalizer\NormalizerInterface;

	class AddOwnerGroupsNormalizer implements NormalizerInterface
	{
	public function __construct(private NormalizerInterface $normalizer)
	{
	}
Show Lines	// ... lines 12 - 23
	}

Show Lines	// ... lines 1 - 6
	class AddOwnerGroupsNormalizer implements NormalizerInterface
	{
Show Lines	// ... lines 9 - 12
	public function normalize(mixed $object, string $format = null, array $context = []): array\|string\|int\|float\|bool\|\ArrayObject\|null
	{
	dump('IT WORKS!');

	return $this->normalizer->normalize($object, $format, $context);
	}

	public function supportsNormalization(mixed $data, string $format = null, array $context = []): bool
	{
	return $this->normalizer->supportsNormalization($data, $format);
	}
	}

Show Lines	// ... lines 1 - 4
	use Symfony\Component\DependencyInjection\Attribute\AsDecorator;
Show Lines	// ... lines 6 - 7
	#[AsDecorator('serializer')]
	class AddOwnerGroupsNormalizer implements NormalizerInterface
	{
Show Lines	// ... lines 11 - 25
	}

Show Lines	// ... lines 1 - 6
	use Symfony\Component\Serializer\SerializerAwareInterface;
Show Lines	// ... lines 8 - 10
	class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
	{
Show Lines	// ... lines 13 - 28
	public function setSerializer(SerializerInterface $serializer)
	{
Show Lines	// ... lines 31 - 33
	}
	}

Show Lines	// ... lines 1 - 10
	class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
	{
Show Lines	// ... lines 13 - 28
	public function setSerializer(SerializerInterface $serializer)
	{
	if ($this->normalizer instanceof SerializerAwareInterface) {
	$this->normalizer->setSerializer($serializer);
	}
	}
	}

Show Lines	// ... lines 1 - 5
	use Symfony\Bundle\SecurityBundle\Security;
Show Lines	// ... lines 7 - 12
	class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
	{
	public function __construct(private NormalizerInterface $normalizer, private Security $security)
	{
	}
Show Lines	// ... lines 18 - 38
	}

Show Lines	// ... lines 1 - 4
	use App\Entity\DragonTreasure;
Show Lines	// ... lines 6 - 12
	class AddOwnerGroupsNormalizer implements NormalizerInterface, SerializerAwareInterface
	{
Show Lines	// ... lines 15 - 18
	public function normalize(mixed $object, string $format = null, array $context = []): array\|string\|int\|float\|bool\|\ArrayObject\|null
	{
	if ($object instanceof DragonTreasure && $this->security->getUser() === $object->getOwner()) {
	$context['groups'][] = 'owner:read';
	}
Show Lines	// ... lines 24 - 25
	}
Show Lines	// ... lines 27 - 38
	}