Neos\Flow\Security\Context::withoutAuthorizationChecks PHP Method

Context Class Documentation Usage Examples Of Neos\Flow\Security\Context::withoutAuthorizationChecks Show file Open project: neos/flow-development-collection

withoutAuthorizationChecks() public method

..) for the runtime of $callback Usage: $this->securityContext->withoutAuthorizationChecks(function () use ($accountRepository, $username, $providerName, &$account) { this will disable the PersistenceQueryRewritingAspect for this one call $account = $accountRepository->findActiveByAccountIdentifierAndAuthenticationProviderName($username, $providerName) });
public withoutAuthorizationChecks ( Closure $callback ) : void
$callback Closure
return void 
    public function withoutAuthorizationChecks(\Closure $callback)
    {
        $authorizationChecksAreAlreadyDisabled = $this->authorizationChecksDisabled;
        $this->authorizationChecksDisabled = true;
        try {
            /** @noinspection PhpUndefinedMethodInspection */
            $callback->__invoke();
        } catch (\Exception $exception) {
            $this->authorizationChecksDisabled = false;
            throw $exception;
        }
        if ($authorizationChecksAreAlreadyDisabled === false) {
            $this->authorizationChecksDisabled = false;
        }
    }

Usage Example

Example #1
0
 /**
  * Add the current node and all parent identifiers to be used for cache entry tagging
  *
  * @Flow\Before("method(Neos\Flow\Mvc\Routing\RouterCachingService->extractUuids())")
  * @param JoinPointInterface $joinPoint The current join point
  * @return void
  */
 public function addCurrentNodeIdentifier(JoinPointInterface $joinPoint)
 {
     $values = $joinPoint->getMethodArgument('values');
     if (!isset($values['node']) || strpos($values['node'], '@') === false) {
         return;
     }
     // Build context explicitly without authorization checks because the security context isn't available yet
     // anyway and any Entity Privilege targeted on Workspace would fail at this point:
     $this->securityContext->withoutAuthorizationChecks(function () use($joinPoint, $values) {
         $contextPathPieces = NodePaths::explodeContextPath($values['node']);
         $context = $this->contextFactory->create(['workspaceName' => $contextPathPieces['workspaceName'], 'dimensions' => $contextPathPieces['dimensions'], 'invisibleContentShown' => true]);
         $node = $context->getNode($contextPathPieces['nodePath']);
         if (!$node instanceof NodeInterface) {
             return;
         }
         $values['node-identifier'] = $node->getIdentifier();
         $node = $node->getParent();
         $values['node-parent-identifier'] = array();
         while ($node !== null) {
             $values['node-parent-identifier'][] = $node->getIdentifier();
             $node = $node->getParent();
         }
         $joinPoint->setMethodArgument('values', $values);
     });
 }
All Usage Examples Of Neos\Flow\Security\Context::withoutAuthorizationChecks
Context
areAuthorizationChecksDisabled
canBeInitialized
clearContext
getAccount
getAccountByAuthenticationProviderName
getAuthenticationStrategy
getAuthenticationTokens
getAuthenticationTokensOfType
getContextHash
getCsrfProtectionToken
getInterceptedRequest
getRoles
hasCsrfProtectionTokens
hasRole
initialize
injectAuthenticationManager
injectSettings
isCsrfProtectionTokenValid
isInitialized
isTokenActive
mergeTokens
refreshRoles
refreshTokens
separateActiveAndInactiveTokens
setInterceptedRequest
setRequest
shutdownObject
updateTokens
withoutAuthorizationChecks