Would it make sens to move DomainObjectInterface to symfony/contracts ? #48257
Replies: 1 suggested answer 2 replies
-
|
The recommended solution for authorization is to use custom voters rather than ACLs. So I doubt we will create a new contracts package for it. |
Beta Was this translation helpful? Give feedback.
-
|
Does it mean ACL will be deprecated one day ? I personally use custom voters, but when open-sourcing a library it might be useful to support both. If ACL won't be deprecated, new contract might make sens. |
Beta Was this translation helpful? Give feedback.
-
|
They're not officially deprecated for now (and we haven't done an explicit plan for them) but they are officially discouraged and they are considered community-maintained (they don't receive the same attention from the core team than other components). |
Beta Was this translation helpful? Give feedback.
{{editor}}'s edit
{{editor}}'s edit
Loading...
Sorry, something went wrong.
-
symfony/security-acl is not recommended for most situation anymore so even if some libraries can provide acl supports, it would always be better to have an optional support instead of having this as a required dependency.
(sonata-project/SonataAdminBundle#7303 for context).
When working with "domain objects which you want to store ACLs" there is a
DomainObjectInterfaceto "return a unique identifier for this domain object".Let's say I have
In this example the domain object is shared between both SecurityInterface implementation. Even if I can load dynamically the service config whether or not the
symfony/security-aclis installed, the domain object will still need to implement theDomainObjectInterfaceso it cannot be a fully optional dependency...Then would it make sens to move DomainObjectInterface to symfony/contracts ? This way
DomainObjectInterfacefromsymfony/acl-contractsOr am I missing something in the way to move a dependency from require to optional ?
Beta Was this translation helpful? Give feedback.