[Symfony 7.3] Replace AuthorizationChecker with AccessDecisionManager…#913
Merged
TomasVotruba merged 1 commit intorectorphp:mainfrom Jan 20, 2026
Conversation
samsonasik
reviewed
Jan 13, 2026
rules/Symfony73/Rector/Class_/AuthorizationCheckerToAccessDecisionManagerInVoterRector.php
Outdated
Show resolved
Hide resolved
samsonasik
reviewed
Jan 13, 2026
rules/Symfony73/Rector/Class_/AuthorizationCheckerToAccessDecisionManagerInVoterRector.php
Outdated
Show resolved
Hide resolved
samsonasik
reviewed
Jan 13, 2026
rules/Symfony73/Rector/Class_/AuthorizationCheckerToAccessDecisionManagerInVoterRector.php
Outdated
Show resolved
Hide resolved
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
from
e64d0b2 to
3c3f369
Compare
khadidja34
approved these changes
Jan 15, 2026
samsonasik
reviewed
Jan 15, 2026
rules/Symfony73/Rector/Class_/AuthorizationCheckerToAccessDecisionManagerInVoterRector.php
Show resolved
Hide resolved
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
from
3c3f369 to
5ffc574
Compare
samsonasik
reviewed
Jan 15, 2026
rules/Symfony73/Rector/Class_/AuthorizationCheckerToAccessDecisionManagerInVoterRector.php
Show resolved
Hide resolved
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
from
5ffc574 to
53f0017
Compare
samsonasik
requested changes
Jan 15, 2026
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
from
53f0017 to
d73085b
Compare
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
2 times, most recently
from
cdb9687 to
0e419fc
Compare
meddrh
force-pushed
the
symfony73/authorization-checker-to-access-decision-manager
branch
from
0e419fc to
7f5d38c
Compare
samsonasik
approved these changes
Jan 20, 2026
Member
|
Thank you 👍 |
Contributor
|
I'm using AuthorisationCheckerInterface in a voter and AuthorizationCheckerToAccessDecisionManagerInVoterRector is completely stripping out the injection of this service. We then have code failing as $this->authorizationChecker is no longer available. @TomasVotruba, looks like the actual upgrade is working to replace the variable and use the new signature with $token as the first parameter? |
Contributor
|
Here is the breaking code. Original: final class FooVoter extends Voter
{
public const string EDIT = 'edit';
public function __construct(
private readonly AuthorizationCheckerInterface $authorizationChecker,
) {
}
protected function supports(string $attribute, mixed $subject): bool
{
if (!$subject instanceof Foo) {
return false;
}
return \in_array($attribute, [self::EDIT], true);
}
/**
* @param Foo $subject
*/
protected function voteOnAttribute(string $attribute, mixed $subject, TokenInterface $token, ?Vote $vote = null): bool
{
$currentUser = $token->getUser();
// the user must be logged in; if not, deny permission
if (!$currentUser instanceof User) {
return false;
}
return match ($attribute) {
self::EDIT => $this->isEditable($currentUser, $subject),
default => false,
};
}
private function isEditable(User $currentUser, Foo $subject): bool
{
if ($this->authorizationChecker->isGranted('ROLE_SUPER_ADMIN')) {
// Super admin always has access
return true;
}
return $subject->getOwner() === $currentUser;
}
}And the change: 
Additionally, I thought it be because I didn't have a Token on my private method for isEditable but adding that didn't resolve it either. I don't think this is a safe rule to be implemented in Rector? |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds a Symfony 7.3 Rector rule that replaces
AuthorizationCheckerInterfacewith
AccessDecisionManagerInterfacein voters.The rule updates injected services, renames properties, and converts
isGranted()calls todecide().Tests and fixtures are included.