Merge branch '5.2' into 5.x

* 5.2:
  Minor change to use DateTimeImmutable instead of DateTime
  [Twig] Add missing space
  [Validator] Mention doctrine-bridge in the UniqueEntity constraint
  remove unsupported trusted header config values
  [Routing] Add PHP Attribute route example to the controller
  [Form] Add PHP Attributes example to forms

Author: javiereguiluz

controller/service.rst

@@ -41,6 +41,22 @@ a service like: ``App\Controller\HelloController::index``:
             }
         }
 
+    .. code-block:: php-attributes
+
+        // src/Controller/HelloController.php
+        namespace App\Controller;
+
+        use Symfony\Component\Routing\Annotation\Route;
+
+        class HelloController
+        {
+            #[Route('/hello', name: 'hello', methods: ['GET'])]
+            public function index()
+            {
+                // ...
+            }
+        }
+
     .. code-block:: yaml
 
         # config/routes.yaml
@@ -105,6 +121,23 @@ which is a common practice when following the `ADR pattern`_
             }
         }
 
+    .. code-block:: php-attributes
+
+        // src/Controller/Hello.php
+        namespace App\Controller;
+
+        use Symfony\Component\HttpFoundation\Response;
+        use Symfony\Component\Routing\Annotation\Route;
+
+        #[Route('/hello/{name}', name: 'hello')]
+        class Hello
+        {
+            public function __invoke($name = 'World')
+            {
+                return new Response(sprintf('Hello %s!', $name));
+            }
+        }
+
     .. code-block:: yaml
 
         # config/routes.yaml

deployment/proxies.rst

@@ -37,9 +37,6 @@ and what headers your reverse proxy uses to send information:
             trusted_headers: ['x-forwarded-for', 'x-forwarded-host', 'x-forwarded-proto', 'x-forwarded-port']
             // or, if your proxy instead uses the "Forwarded" header
             trusted_headers: ['forwarded']
-            // or, if you're using a wellknown proxy
-            trusted_headers: [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_AWS_ELB]
-            trusted_headers: [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_TRAEFIK]
 
     .. code-block:: xml
 
@@ -80,9 +77,6 @@ and what headers your reverse proxy uses to send information:
             'trusted_headers' => ['x-forwarded-for', 'x-forwarded-host', 'x-forwarded-proto', 'x-forwarded-port'],
             // or, if your proxy instead uses the "Forwarded" header
             'trusted_headers' => ['forwarded'],
-            // or, if you're using a wellknown proxy
-            'trusted_headers' => [Request::HEADER_X_FORWARDED_AWS_ELB],
-            'trusted_headers' => [Request::HEADER_X_FORWARDED_TRAEFIK],
         ]);
 
 .. deprecated:: 5.2
@@ -135,9 +129,6 @@ In this case, you'll need to - *very carefully* - trust *all* proxies.
             // run time by $_SERVER['REMOTE_ADDR'])
             trusted_proxies: '127.0.0.1,REMOTE_ADDR'
 
-            // if you're using ELB, otherwise use another Request::HEADER-* constant
-            trusted_headers: [!php/const Symfony\\Component\\HttpFoundation\\Request::HEADER_X_FORWARDED_AWS_ELB, '!x-forwarded-host', '!x-forwarded-prefix']
-
 That's it! It's critical that you prevent traffic from all non-trusted sources.
 If you allow outside traffic, they could "spoof" their true IP address and
 other information.

doctrine/events.rst

@@ -76,7 +76,7 @@ define a callback for the ``prePersist`` Doctrine event:
              */
             public function setCreatedAtValue(): void
             {
-                $this->createdAt = new \DateTime();
+                $this->createdAt = new \DateTimeImmutable();
             }
         }
 

forms.rst

@@ -507,6 +507,23 @@ object.
             protected $dueDate;
         }
 
+    .. code-block:: php-attributes
+
+        // src/Entity/Task.php
+        namespace App\Entity;
+
+        use Symfony\Component\Validator\Constraints as Assert;
+
+        class Task
+        {
+            #[Assert\NotBlank]
+            public $task;
+
+            #[Assert\NotBlank]
+            #[Assert\Type(\DateTime::class)]
+            protected $dueDate;
+        }
+
     .. code-block:: yaml
 
         # config/validator/validation.yaml

performance.rst

@@ -279,7 +279,7 @@ You can also profile your template code with the :ref:`stopwatch Twig tag <refer
 .. code-block:: twig
 
     {% stopwatch 'render-blog-posts' %}
-        {% for post in blog_posts%}
+        {% for post in blog_posts %}
             {# ... #}
         {% endfor %}
     {% endstopwatch %}

reference/constraints/UniqueEntity.rst

@@ -10,6 +10,11 @@ using an email address that already exists in the system.
     If you want to validate that all the elements of the collection are unique
     use the :doc:`Unique constraint </reference/constraints/Unique>`.
 
+.. note::
+
+    In order to use this constraint, you should have installed the
+    symfony/doctrine-bridge with Composer.
+
 ==========  ===================================================================
 Applies to  :ref:`class <validation-class-target>`
 Options     - `em`_

reference/constraints/UserPassword.rst

@@ -12,7 +12,7 @@ password, but needs to enter their old password for security.
 
 .. note::
 
-    In order to use this constraints, you should have installed the
+    In order to use this constraint, you should have installed the
     symfony/security-core component with Composer.
 
 ==========  ===================================================================