TheCoreDev/sterivein
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

AuthenticationException must be catch in renderRaw and not in render method

Browse Source
This commit is contained in:
Manuel Raynaud
2014-04-29 10:44:48 +02:00
parent fd10b9d9a2
commit 312b27a113
1 changed files with 13 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
core/lib/Thelia/Controller/Admin/BaseAdminController.php
View File

@@ -403,12 +403,10 @@ class BaseAdminController extends BaseController
*/
protected function render($templateName, $args = array(), $status = 200)
{
try {
$response = Response::create($this->renderRaw($templateName, $args), $status);
} catch (AuthenticationException $ex) {
// User is not authenticated, and templates requires authentication -> redirect to login page
// We user login_tpl as a path, not a template.
$response = RedirectResponse::create(URL::getInstance()->absoluteUrl($ex->getLoginTemplate()));
$response = $this->renderRaw($templateName, $args);
if (!$response instanceof \Symfony\Component\HttpFoundation\Response) {
$response = Response::create($response, $status);
}
return $response;
@@ -421,7 +419,7 @@ class BaseAdminController extends BaseController
* @param array $args the template arguments
* @param null $templateDir
*
* @return \Thelia\Core\HttpFoundation\Response
* @return string|\Symfony\Component\HttpFoundation\RedirectResponse
*/
protected function renderRaw($templateName, $args = array(), $templateDir = null)
{
@@ -459,12 +457,17 @@ class BaseAdminController extends BaseController
// Render the template.
try {
$data = $this->getParser($templateDir)->render($templateName, $args);
$content = $this->getParser($templateDir)->render($templateName, $args);
return $data;
} catch (AuthenticationException $ex) {
// User is not authenticated, and templates requires authentication -> redirect to login page
// We user login_tpl as a path, not a template.
$content = RedirectResponse::create(URL::getInstance()->absoluteUrl($ex->getLoginTemplate()));
} catch (AuthorizationException $ex) {
// User is not allowed to perform the required action. Return the error page instead of the requested page.
return $this->errorPage($this->getTranslator()->trans("Sorry, you are not allowed to perform this action."), 403);
$content = $this->errorPage($this->getTranslator()->trans("Sorry, you are not allowed to perform this action."), 403);
}
return $content;
}
}