Chapters

29 Chapters | 1:34:37 |

01

Introduction

1:00
02

ManyToOne Doctrine Relationships

4:40
03

Sharing Data between Fixture Classes

1:49
04

Restricting Edit Access to Owners

1:53
05

Using a shortcut Base Controller Class

2:30
06

Using PHPDoc for Auto-Completion

1:26
07

OneToMany: The Inverse Side of a Relationship

5:37
08

Doctrine Extensions: Sluggable and Timestampable

4:30
09

Using the slug in the Event URL

2:04
10

Adding createdAt and updatedAt Timestampable Fields

1:41
11

Creating a Custom orderBy Query

2:11
12

ManyToMany Relationship

2:37
13

Using the ManyToMany so Users can Attend an Event

4:53
14

More with ManyToMany: Avoiding Duplicates

2:51
15

JSON up in your Response

2:50
16

Come on, Set the Content-Type Header!

3:19
17

Adding the AJAX Touch: JavaScript

2:16
18

Customizing Error Pages and How Errors are Handled

6:01
19

Render another Controller in Twig

4:28
20

Creating a Pretty CSV Download

4:19
21

Your Very First Service

4:42
22

Symfony Overlord: The Service Container

4:58
23

Configuration Loading and Type-Hinting

2:01
24

Dependency Inject All the Things

3:14
25

Twig Extensions and Dependency Injection Tags

4:33
26

Doctrine is in your Lifecycle (with Callbacks)

2:08
27

Doctrine Event Listeners

5:59
28

Doctrine Listeners on Update

2:48
29

Keep Going!

1:19

This tutorial has a new version, check it out!

> Symfony 2 > Starting in Symfony2: Course 3 (2.4+)

Buy Access to Course

05.

Using a shortcut Base Controller Class

Autoplay

Keep on Learning!

If you liked what you've learned so far, dive in! Subscribe to get
access to this tutorial plus video, code and script downloads.

Start your All-Access Pass

Buy just this tutorial for $12.00

Previous Chapter

Next Chapter

Using a shortcut Base Controller Class¶

Getting the security.context service requires too much typing. So let’s make some improvements so we can get things done faster.

Create a new class called Controller inside the EventBundle and make this class extend Symfony’s standard base controller. But watch out! Both classes are called Controller, so we need to alias Symfony’s class to BaseController:

// src/Yoda/EventBundle/Controller/Controller.php

namespace Yoda\EventBundle\Controller;

use Symfony\Bundle\FrameworkBundle\Controller\Controller as BaseController;

class Controller extends BaseController
{
    // ...
}

Inside this class, create a function that returns the security context from the service container:

// src/Yoda/EventBundle/Controller/Controller.php
// ...

public function getSecurityContext()
{
    return $this->container->get('security.context');
}

Using the Custom Base Controller¶

Head back to EventController. Right now, this extends Symfony’s Controller, which means that we get access to all of its shortcuts. Remove the use statement for Symfony’s Controller and replace it with a use statement for our fancy Controller class:

// src/Yoda/EventBundle/Controller/EventController.php
// ...

use Yoda\EventBundle\Controller\Controller;

class EventController extends Controller
{
    // ...
}

Now we can access all of Symfony’s shortcut methods and the new getSecurityContext method we created. And actually, we don’t even need the use statement because this class lives in the same namespace as the new Controller class.

Ok! Let’s use the new getSecurityContext method to shorten things:

// src/Yoda/EventBundle/Controller/EventController.php
// ...

private function enforceUserSecurity($role = 'ROLE_USER')
{
    if (!$this->getSecurityContext()->isGranted($role)) {
        // in Symfony 2.5
        // throw $this->createAccessDeniedException('message!');
        throw new AccessDeniedException('Need '.$role);
    }
}

And even though we’re not really using its page, remove the use statement in DefaultController as well so that we’re using the new class:

// src/Yoda/EventBundle/Controller/DefaultController.php
// ...

// no use statement here anymore

class DefaultController extends Controller
{
// ...

Change the use statements in both RegisterController and SecurityController. In RegisterController, we can also take advantage of the new shortcut:

// src/Yoda/UserBundle/Controller/RegisterController.php
// ...

use Yoda\EventBundle\Controller\Controller;

class RegisterController extends Controller
{
    // ...

    private function authenticateUser(User $user)
    {
        $providerKey = 'secured_area'; // your firewall name
        $token = new UsernamePasswordToken($user, null, $providerKey, $user->getRoles());

        $this->getSecurityContext()->setToken($token);
    }
}

// src/Yoda/UserBundle/Controller/SecurityController.php
// ...

use Yoda\EventBundle\Controller\Controller;
// ...

class SecurityController extends Controller

These controllers do need to have a use statement, because they don’t live in the same namespace as the new Controller class.

Add More Methods to Controller!¶

Now that all of our controllers extend our Controller class, we can add whatever shortcut functions we want here. For example, if we needed to check for Event owner security in another controller, we could just move that function into Controller and make it public:

// src/Yoda/EventBundle/Controller/Controller.php
// ...

use Yoda\EventBundle\Entity\Event;
use Symfony\Component\Security\Core\Exception\AccessDeniedException;

class Controller extends BaseController
{
    // ...

    public function enforceOwnerSecurity(Event $event)
    {
        $user = $this->getUser();

        if ($user != $event->getOwner()) {
            // if you're using 2.5 or higher
            // throw $this->createAccessDeniedException('You are not the owner!!!');
            throw new AccessDeniedException('You are not the owner!!!');
        }
    }
}

2 Comments

Sort By

Junaid Farooq 6 years ago

Hi,

If i put the enforceOwnerSecurity method in the parent controller class and then call it from the EventController class, it throws an exception but when i put it back in the latter, it works. I dont what i might be missing as i am fairly new to symfony. It maybe an error due to PHP 7 version which I am running with Symfony 2.4.

| Reply |

Victor SFCASTS Junaid Farooq 6 years ago

Hey Junaid,

It's difficult to guess the reasons, could you show us the error you see, and also print the code which causes this error? We'd be glad to help you.

Cheers!