Merge remote-tracking branch 'origin/2.3' into 2.3

Author: weaverryan

book/security.rst

@@ -1830,125 +1830,6 @@ method of the security context::
     A firewall must be active or an exception will be thrown when the ``isGranted``
     method is called. See the note above about templates for more details.
 
-Impersonating a User
---------------------
-
-Sometimes, it's useful to be able to switch from one user to another without
-having to log out and log in again (for instance when you are debugging or trying
-to understand a bug a user sees that you can't reproduce). This can be easily
-done by activating the ``switch_user`` firewall listener:
-
-.. configuration-block::
-
-    .. code-block:: yaml
-
-        # app/config/security.yml
-        security:
-            firewalls:
-                main:
-                    # ...
-                    switch_user: true
-
-    .. code-block:: xml
-
-        <!-- app/config/security.xml -->
-        <config>
-            <firewall>
-                <!-- ... -->
-                <switch-user />
-            </firewall>
-        </config>
-
-    .. code-block:: php
-
-        // app/config/security.php
-        $container->loadFromExtension('security', array(
-            'firewalls' => array(
-                'main'=> array(
-                    // ...
-                    'switch_user' => true
-                ),
-            ),
-        ));
-
-To switch to another user, just add a query string with the ``_switch_user``
-parameter and the username as the value to the current URL:
-
-.. code-block:: text
-
-    http://example.com/somewhere?_switch_user=thomas
-
-To switch back to the original user, use the special ``_exit`` username:
-
-.. code-block:: text
-
-    http://example.com/somewhere?_switch_user=_exit
-
-During impersonation, the user is provided with a special role called
-``ROLE_PREVIOUS_ADMIN``. In a template, for instance, this role can be used
-to show a link to exit impersonation:
-
-.. configuration-block::
-
-    .. code-block:: html+jinja
-
-        {% if is_granted('ROLE_PREVIOUS_ADMIN') %}
-            <a href="{{ path('homepage', {'_switch_user': '_exit'}) }}">Exit impersonation</a>
-        {% endif %}
-
-    .. code-block:: html+php
-
-        <?php if ($view['security']->isGranted('ROLE_PREVIOUS_ADMIN')): ?>
-            <a
-                href="<?php echo $view['router']->generate('homepage', array(
-                    '_switch_user' => '_exit',
-                ) ?>"
-            >
-                Exit impersonation
-            </a>
-        <?php endif; ?>
-
-Of course, this feature needs to be made available to a small group of users.
-By default, access is restricted to users having the ``ROLE_ALLOWED_TO_SWITCH``
-role. The name of this role can be modified via the ``role`` setting. For
-extra security, you can also change the query parameter name via the ``parameter``
-setting:
-
-.. configuration-block::
-
-    .. code-block:: yaml
-
-        # app/config/security.yml
-        security:
-            firewalls:
-                main:
-                    # ...
-                    switch_user: { role: ROLE_ADMIN, parameter: _want_to_be_this_user }
-
-    .. code-block:: xml
-
-        <!-- app/config/security.xml -->
-        <config>
-            <firewall>
-                <!-- ... -->
-                <switch-user role="ROLE_ADMIN" parameter="_want_to_be_this_user" />
-            </firewall>
-        </config>
-
-    .. code-block:: php
-
-        // app/config/security.php
-        $container->loadFromExtension('security', array(
-            'firewalls' => array(
-                'main'=> array(
-                    // ...
-                    'switch_user' => array(
-                        'role' => 'ROLE_ADMIN',
-                        'parameter' => '_want_to_be_this_user',
-                    ),
-                ),
-            ),
-        ));
 
 Stateless Authentication
 ------------------------
@@ -2073,6 +1954,7 @@ Learn more from the Cookbook
 ----------------------------
 
 * :doc:`Forcing HTTP/HTTPS </cookbook/security/force_https>`
+* :doc:`Impersonating a User </cookbook/security/impersonating_user>`
 * :doc:`Blacklist users by IP address with a custom voter </cookbook/security/voters>`
 * :doc:`Access Control Lists (ACLs) </cookbook/security/acl>`
 * :doc:`/cookbook/security/remember_me`

cookbook/doctrine/custom_dql_functions.rst

@@ -17,17 +17,14 @@ In Symfony, you can register your custom DQL functions as follows:
         doctrine:
             orm:
                 # ...
-                entity_managers:
-                    default:
-                        # ...
-                        dql:
-                            string_functions:
-                                test_string: Acme\HelloBundle\DQL\StringFunction
-                                second_string: Acme\HelloBundle\DQL\SecondStringFunction
-                            numeric_functions:
-                                test_numeric: Acme\HelloBundle\DQL\NumericFunction
-                            datetime_functions:
-                                test_datetime: Acme\HelloBundle\DQL\DatetimeFunction
+                dql:
+                    string_functions:
+                        test_string: Acme\HelloBundle\DQL\StringFunction
+                        second_string: Acme\HelloBundle\DQL\SecondStringFunction
+                    numeric_functions:
+                        test_numeric: Acme\HelloBundle\DQL\NumericFunction
+                    datetime_functions:
+                        test_datetime: Acme\HelloBundle\DQL\DatetimeFunction
 
     .. code-block:: xml
 
@@ -41,15 +38,12 @@ In Symfony, you can register your custom DQL functions as follows:
             <doctrine:config>
                 <doctrine:orm>
                     <!-- ... -->
-                    <doctrine:entity-manager name="default">
-                        <!-- ... -->
-                        <doctrine:dql>
-                            <doctrine:string-function name="test_string>Acme\HelloBundle\DQL\StringFunction</doctrine:string-function>
-                            <doctrine:string-function name="second_string>Acme\HelloBundle\DQL\SecondStringFunction</doctrine:string-function>
-                            <doctrine:numeric-function name="test_numeric>Acme\HelloBundle\DQL\NumericFunction</doctrine:numeric-function>
-                            <doctrine:datetime-function name="test_datetime>Acme\HelloBundle\DQL\DatetimeFunction</doctrine:datetime-function>
-                        </doctrine:dql>
-                    </doctrine:entity-manager>
+                    <doctrine:dql>
+                        <doctrine:string-function name="test_string>Acme\HelloBundle\DQL\StringFunction</doctrine:string-function>
+                        <doctrine:string-function name="second_string>Acme\HelloBundle\DQL\SecondStringFunction</doctrine:string-function>
+                        <doctrine:numeric-function name="test_numeric>Acme\HelloBundle\DQL\NumericFunction</doctrine:numeric-function>
+                        <doctrine:datetime-function name="test_datetime>Acme\HelloBundle\DQL\DatetimeFunction</doctrine:datetime-function>
+                    </doctrine:dql>
                 </doctrine:orm>
             </doctrine:config>
         </container>
@@ -60,23 +54,16 @@ In Symfony, you can register your custom DQL functions as follows:
         $container->loadFromExtension('doctrine', array(
             'orm' => array(
                 // ...
-
-                'entity_managers' => array(
-                    'default' => array(
-                        // ...
-
-                        'dql' => array(
-                            'string_functions' => array(
-                                'test_string'   => 'Acme\HelloBundle\DQL\StringFunction',
-                                'second_string' => 'Acme\HelloBundle\DQL\SecondStringFunction',
-                            ),
-                            'numeric_functions' => array(
-                                'test_numeric' => 'Acme\HelloBundle\DQL\NumericFunction',
-                            ),
-                            'datetime_functions' => array(
-                                'test_datetime' => 'Acme\HelloBundle\DQL\DatetimeFunction',
-                            ),
-                        ),
+                'dql' => array(
+                    'string_functions' => array(
+                        'test_string'   => 'Acme\HelloBundle\DQL\StringFunction',
+                        'second_string' => 'Acme\HelloBundle\DQL\SecondStringFunction',
+                    ),
+                    'numeric_functions' => array(
+                        'test_numeric' => 'Acme\HelloBundle\DQL\NumericFunction',
+                    ),
+                    'datetime_functions' => array(
+                        'test_datetime' => 'Acme\HelloBundle\DQL\DatetimeFunction',
                     ),
                 ),
             ),

cookbook/map.rst.inc

@@ -124,6 +124,7 @@
 
   * :doc:`/cookbook/security/entity_provider`
   * :doc:`/cookbook/security/remember_me`
+  * :doc:`/cookbook/security/impersonating_user`
   * :doc:`/cookbook/security/voters`
   * :doc:`/cookbook/security/acl`
   * :doc:`/cookbook/security/acl_advanced`

cookbook/security/impersonating_user.rst

@@ -0,0 +1,136 @@
+.. index::
+    single: Security; Impersonating User
+
+How to Impersonate a User
+=========================
+
+Sometimes, it's useful to be able to switch from one user to another without
+having to log out and log in again (for instance when you are debugging or trying
+to understand a bug a user sees that you can't reproduce). This can be easily
+done by activating the ``switch_user`` firewall listener:
+
+.. configuration-block::
+
+    .. code-block:: yaml
+
+        # app/config/security.yml
+        security:
+            firewalls:
+                main:
+                    # ...
+                    switch_user: true
+
+    .. code-block:: xml
+
+        <!-- app/config/security.xml -->
+        <?xml version="1.0" encoding="UTF-8"?>
+        <srv:container xmlns="http://symfony.com/schema/dic/security"
+            xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+            xmlns:srv="http://symfony.com/schema/dic/services"
+            xsi:schemaLocation="http://symfony.com/schema/dic/services
+                http://symfony.com/schema/dic/services/services-1.0.xsd">
+            <config>
+                <firewall>
+                    <!-- ... -->
+                    <switch-user />
+                </firewall>
+            </config>
+        </srv:container>
+
+    .. code-block:: php
+
+        // app/config/security.php
+        $container->loadFromExtension('security', array(
+            'firewalls' => array(
+                'main'=> array(
+                    // ...
+                    'switch_user' => true
+                ),
+            ),
+        ));
+
+To switch to another user, just add a query string with the ``_switch_user``
+parameter and the username as the value to the current URL:
+
+.. code-block:: text
+
+    http://example.com/somewhere?_switch_user=thomas
+
+To switch back to the original user, use the special ``_exit`` username:
+
+.. code-block:: text
+
+    http://example.com/somewhere?_switch_user=_exit
+
+During impersonation, the user is provided with a special role called
+``ROLE_PREVIOUS_ADMIN``. In a template, for instance, this role can be used
+to show a link to exit impersonation:
+
+.. configuration-block::
+
+    .. code-block:: html+jinja
+
+        {% if is_granted('ROLE_PREVIOUS_ADMIN') %}
+            <a href="{{ path('homepage', {'_switch_user': '_exit'}) }}">Exit impersonation</a>
+        {% endif %}
+
+    .. code-block:: html+php
+
+        <?php if ($view['security']->isGranted('ROLE_PREVIOUS_ADMIN')): ?>
+            <a
+                href="<?php echo $view['router']->generate('homepage', array(
+                    '_switch_user' => '_exit',
+                ) ?>"
+            >
+                Exit impersonation
+            </a>
+        <?php endif; ?>
+
+Of course, this feature needs to be made available to a small group of users.
+By default, access is restricted to users having the ``ROLE_ALLOWED_TO_SWITCH``
+role. The name of this role can be modified via the ``role`` setting. For
+extra security, you can also change the query parameter name via the ``parameter``
+setting:
+
+.. configuration-block::
+
+    .. code-block:: yaml
+
+        # app/config/security.yml
+        security:
+            firewalls:
+                main:
+                    # ...
+                    switch_user: { role: ROLE_ADMIN, parameter: _want_to_be_this_user }
+
+    .. code-block:: xml
+
+        <!-- app/config/security.xml -->
+        <?xml version="1.0" encoding="UTF-8"?>
+        <srv:container xmlns="http://symfony.com/schema/dic/security"
+            xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+            xmlns:srv="http://symfony.com/schema/dic/services"
+            xsi:schemaLocation="http://symfony.com/schema/dic/services
+                http://symfony.com/schema/dic/services/services-1.0.xsd">
+            <config>
+                <firewall>
+                    <!-- ... -->
+                    <switch-user role="ROLE_ADMIN" parameter="_want_to_be_this_user" />
+                </firewall>
+            </config>
+        </srv:container>
+
+    .. code-block:: php
+
+        // app/config/security.php
+        $container->loadFromExtension('security', array(
+            'firewalls' => array(
+                'main'=> array(
+                    // ...
+                    'switch_user' => array(
+                        'role' => 'ROLE_ADMIN',
+                        'parameter' => '_want_to_be_this_user',
+                    ),
+                ),
+            ),
+        ));

cookbook/security/index.rst

@@ -6,6 +6,7 @@ Security
 
     entity_provider
     remember_me
+    impersonating_user
     voters
     acl
     acl_advanced

reference/forms/types/birthday.rst

@@ -30,6 +30,7 @@ option defaults to 120 years ago to the current year.
 |                      | - `format`_                                                                   |
 |                      | - `model_timezone`_                                                           |
 |                      | - `view_timezone`_                                                            |
+|                      | - `data`_                                                                     |
 |                      | - `invalid_message`_                                                          |
 |                      | - `invalid_message_parameters`_                                               |
 |                      | - `read_only`_                                                                |
@@ -76,6 +77,8 @@ These options inherit from the :doc:`date </reference/forms/types/date>` type:
 
 These options inherit from the :doc:`form </reference/forms/types/form>` type:
 
+.. include:: /reference/forms/types/options/data.rst.inc
+
 .. include:: /reference/forms/types/options/invalid_message.rst.inc
 
 .. include:: /reference/forms/types/options/invalid_message_parameters.rst.inc

reference/forms/types/checkbox.rst

@@ -50,7 +50,7 @@ not affect the value that's set on your object.
 
 .. caution::
 
-    To make a checkbox checked by default, use the `data`_ option.
+    To make a checkbox checked by default, set the `data`_ option to ``true``.
 
 Inherited options
 -----------------