[Security] Added error code to UserPassword constraint

okorneliuk · okorneliuk · commit 4cd20fe5382b · 2023-04-20T12:33:20.000+03:00
diff --git a/Tests/Validator/Constraints/UserPasswordValidatorTestCase.php b/Tests/Validator/Constraints/UserPasswordValidatorTestCase.php
@@ -87,6 +87,7 @@ public function testPasswordIsNotValid(UserPassword $constraint)
         $this->validator->validate('secret', $constraint);
 
         $this->buildViolation('myMessage')
+            ->setCode(UserPassword::INVALID_PASSWORD_ERROR)
             ->assertRaised();
     }
 
@@ -109,6 +110,7 @@ public function testEmptyPasswordsAreNotValid($password)
         $this->validator->validate($password, $constraint);
 
         $this->buildViolation('myMessage')
+            ->setCode(UserPassword::INVALID_PASSWORD_ERROR)
             ->assertRaised();
     }
 
diff --git a/Validator/Constraints/UserPassword.php b/Validator/Constraints/UserPassword.php
@@ -20,6 +20,12 @@
 #[\Attribute(\Attribute::TARGET_PROPERTY | \Attribute::TARGET_METHOD | \Attribute::IS_REPEATABLE)]
 class UserPassword extends Constraint
 {
+    public const INVALID_PASSWORD_ERROR = '2d2a8bb4-ddc8-45e4-9b0f-8670d3a3e290';
+
+    protected const ERROR_NAMES = [
+        self::INVALID_PASSWORD_ERROR => 'INVALID_PASSWORD_ERROR',
+    ];
+
     public $message = 'This value should be the user\'s current password.';
     public $service = 'security.validator.user_password';
 
diff --git a/Validator/Constraints/UserPasswordValidator.php b/Validator/Constraints/UserPasswordValidator.php
@@ -41,7 +41,9 @@ public function validate(mixed $password, Constraint $constraint)
         }
 
         if (null === $password || '' === $password) {
-            $this->context->addViolation($constraint->message);
+            $this->context->buildViolation($constraint->message)
+                ->setCode(UserPassword::INVALID_PASSWORD_ERROR)
+                ->addViolation();
 
             return;
         }
@@ -59,7 +61,9 @@ public function validate(mixed $password, Constraint $constraint)
         $hasher = $this->hasherFactory->getPasswordHasher($user);
 
         if (null === $user->getPassword() || !$hasher->verify($user->getPassword(), $password, $user instanceof LegacyPasswordAuthenticatedUserInterface ? $user->getSalt() : null)) {
-            $this->context->addViolation($constraint->message);
+            $this->context->buildViolation($constraint->message)
+                ->setCode(UserPassword::INVALID_PASSWORD_ERROR)
+                ->addViolation();
         }
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -87,6 +87,7 @@ public function testPasswordIsNotValid(UserPassword $constraint)`
`87`	`87`	`$this->validator->validate('secret', $constraint);`
`88`	`88`
`89`	`89`	`$this->buildViolation('myMessage')`
	`90`	`+ ->setCode(UserPassword::INVALID_PASSWORD_ERROR)`
`90`	`91`	`->assertRaised();`
`91`	`92`	`}`
`92`	`93`
`@@ -109,6 +110,7 @@ public function testEmptyPasswordsAreNotValid($password)`
`109`	`110`	`$this->validator->validate($password, $constraint);`
`110`	`111`
`111`	`112`	`$this->buildViolation('myMessage')`
	`113`	`+ ->setCode(UserPassword::INVALID_PASSWORD_ERROR)`
`112`	`114`	`->assertRaised();`
`113`	`115`	`}`
`114`	`116`
Original file line number	Diff line number	Diff line change
`@@ -41,7 +41,9 @@ public function validate(mixed $password, Constraint $constraint)`
`41`	`41`	`}`
`42`	`42`
`43`	`43`	`if (null === $password \|\| '' === $password) {`
`44`		`- $this->context->addViolation($constraint->message);`
	`44`	`+ $this->context->buildViolation($constraint->message)`
	`45`	`+ ->setCode(UserPassword::INVALID_PASSWORD_ERROR)`
	`46`	`+ ->addViolation();`
`45`	`47`
`46`	`48`	`return;`
`47`	`49`	`}`
`@@ -59,7 +61,9 @@ public function validate(mixed $password, Constraint $constraint)`
`59`	`61`	`$hasher = $this->hasherFactory->getPasswordHasher($user);`
`60`	`62`
`61`	`63`	`if (null === $user->getPassword() \|\| !$hasher->verify($user->getPassword(), $password, $user instanceof LegacyPasswordAuthenticatedUserInterface ? $user->getSalt() : null)) {`
`62`		`- $this->context->addViolation($constraint->message);`
	`64`	`+ $this->context->buildViolation($constraint->message)`
	`65`	`+ ->setCode(UserPassword::INVALID_PASSWORD_ERROR)`
	`66`	`+ ->addViolation();`
`63`	`67`	`}`
`64`	`68`	`}`
`65`	`69`	`}`