Modifications according to comments

Cydonia7 · wouterj · commit 5b015f2375e6 · 2015-02-26T12:26:15.000+01:00
diff --git a/book/controller.rst b/book/controller.rst
@@ -434,6 +434,20 @@ If you want to redirect the user to another page, use the ``redirectToRoute()``
     public function indexAction()
     {
         return $this->redirectToRoute('homepage');
+
+        // redirectToRoute is equivalent to using redirect() and generateUrl() together:
+        // return $this->redirect($this->generateUrl('homepage'), 301);
+    }
+
+.. versionadded:: 2.6
+    The ``redirectToRoute()`` method was added in Symfony 2.6. Previously (and still now), you
+    could use ``redirect()`` and ``generateUrl()`` together for this (see the example below).
+
+Or, if you want to redirect externally, just use ``redirect()`` and pass it the URL::
+
+    public function indexAction()
+    {
+        return $this->redirect('http://symfony.com/doc');
     }
 
 By default, the ``redirectToRoute()`` method performs a 302 (temporary) redirect. To
@@ -446,7 +460,7 @@ perform a 301 (permanent) redirect, modify the second argument::
 
 .. tip::
 
-    The ``redirectToRoute()`` method is simply a shortcut that creates a ``Response``
+    The ``redirect()`` method is simply a shortcut that creates a ``Response``
     object that specializes in redirecting the user. It's equivalent to::
 
         use Symfony\Component\HttpFoundation\RedirectResponse;
@@ -622,6 +636,8 @@ For example, imagine you're processing a form submit::
                 'Your changes were saved!'
             );
 
+            // $this->addFlash is equivalent to $this->get('session')->getFlashBag()->add
+
             return $this->redirectToRoute(...);
         }
 
diff --git a/book/security.rst b/book/security.rst
@@ -816,29 +816,32 @@ to users that have a specific role.
 Securing Controllers and other Code
 ...................................
 
-You can easily deny access from inside a controller::
+You can easily deny access from inside a controller:
+
+.. versionadded:: 2.6
+    The ``denyAccessUnlessGranted()`` method was introduced in Symfony 2.6. Previously (and
+    still now), you could check access directly and throw the ``AccessDeniedException`` as shown
+    in the example below).
+
+.. code-block:: php
 
     // ...
 
     public function helloAction($name)
     {
         $this->denyAccessUnlessGranted('ROLE_ADMIN', null, 'Unable to access this page!');
 
+        // Old way :
+        // if (false === $this->isGranted('ROLE_ADMIN')) {
+        //     throw $this->createAccessDeniedException('Unable to access this page!');
+        // }
+
         // ...
     }
 
-.. versionadded:: 2.5
-    The ``createAccessDeniedException`` method was introduced in Symfony 2.5.
-
-The :method:`Symfony\\Bundle\\FrameworkBundle\\Controller\\Controller::createAccessDeniedException`
-method creates a special :class:`Symfony\\Component\\Security\\Core\\Exception\\AccessDeniedException`
-object, which ultimately triggers a 403 HTTP response inside Symfony.
-
-.. versionadded:: 2.6
-    You can use directly `$this->isGranted($role)` instead of 
-    `$this->get('security.context')->isGranted($role)` to check if 
-    a role is granted and `denyAccessUnlessGranted` to throw an exception
-    if the access is not granted (like in the example above).
+In both cases, a special
+:class:`Symfony\\Component\\Security\\Core\\Exception\\AccessDeniedException`
+is thrown, which ultimately triggers a 403 HTTP response inside Symfony.
 
 That's it! If the user isn't logged in yet, they will be asked to login (e.g.
 redirected to the login page). If they *are* logged in, they'll be shown
