On 18 май, 10:23, Tim Nagel <t...@nagel.com.au> wrote:
> You use a class OID.
>
> See CommentBundle's Acl
> implementation:https://github.com/FriendsOfSymfony/CommentBundle/blob/master/Acl/Sec...
Knownly using of invalid identifier leads to unnesessary sql query:
SELECT a.ancestor_id
FROM
acl_object_identities o
INNER JOIN acl_classes c ON c.id = o.class_id
INNER JOIN acl_object_identity_ancestors a ON a.object_identity_id =
o.id
WHERE ((o.object_identifier = 'class' AND c.class_type =
'EntityBundle\\Entity\\Entity'))
I guess it's better to create some new classes to work with class
permissions only, but it's not so easy right now. So I'll try to do it
only when no other solution will be.
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
