Merge branch hotfix/v2.6.17

roadiz-ci · roadiz-ci · commit d8283d1ba6dd · 2025-10-06T18:20:40.000Z
diff --git a/.github/workflows/run-test.yml b/.github/workflows/run-test.yml
@@ -19,7 +19,7 @@ jobs:
         runs-on: ubuntu-latest
         strategy:
             matrix:
-                php-version: ['8.2', '8.3']
+                php-version: ['8.3', '8.4']
         steps:
             - uses: shivammathur/setup-php@v2
               with:
diff --git a/LICENSE.md b/LICENSE.md
@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright © 2024 Ambroise Maupate
+Copyright © 2025 Ambroise Maupate
 
 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the “Software”), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
 
diff --git a/composer.json b/composer.json
@@ -20,30 +20,29 @@
     "minimum-stability": "dev",
     "prefer-stable": true,
     "require": {
-        "php": ">=8.2",
+        "php": ">=8.3",
         "doctrine/orm": "~2.20.0",
         "endroid/qr-code": "^4.0",
-        "roadiz/core-bundle": "2.5.*",
-        "roadiz/rozier": "2.5.*",
-        "roadiz/rozier-bundle": "2.5.*",
+        "roadiz/core-bundle": "2.6.*",
+        "roadiz/rozier-bundle": "2.6.*",
         "scheb/2fa-backup-code": "^7.5",
         "scheb/2fa-bundle": "^7.5",
         "scheb/2fa-google-authenticator": "^7.5",
         "scheb/2fa-totp": "^7.5",
         "scheb/2fa-trusted-device": "^7.5",
-        "symfony/framework-bundle": "6.4.*"
+        "symfony/framework-bundle": "7.3.*"
     },
     "require-dev": {
         "php-coveralls/php-coveralls": "^2.4",
         "phpstan/phpstan": "^1.5.3",
         "phpstan/phpdoc-parser": "<2",
         "phpstan/phpstan-doctrine": "^1.3",
-        "phpunit/phpunit": "^9.5",
-        "roadiz/doc-generator": "2.5.*",
-        "roadiz/entity-generator": "2.5.*",
-        "roadiz/jwt": "2.5.*",
-        "roadiz/random": "2.5.*",
-        "symfony/stopwatch": "6.4.*"
+        "phpunit/phpunit": "^9.6",
+        "roadiz/doc-generator": "2.6.*",
+        "roadiz/entity-generator": "2.6.*",
+        "roadiz/jwt": "2.6.*",
+        "roadiz/random": "2.6.*",
+        "symfony/stopwatch": "7.3.*"
     },
     "config": {
         "optimize-autoloader": true,
@@ -70,8 +69,8 @@
     },
     "extra": {
         "branch-alias": {
-            "dev-main": "2.5.x-dev",
-            "dev-develop": "2.6.x-dev"
+            "dev-main": "2.6.x-dev",
+            "dev-develop": "2.7.x-dev"
         }
     }
 }
diff --git a/src/Backup/BackupCodeManager.php b/src/Backup/BackupCodeManager.php
@@ -18,6 +18,7 @@ public function __construct(
     ) {
     }
 
+    #[\Override]
     public function isBackupCode(object $user, string $code): bool
     {
         if ($user instanceof User) {
@@ -31,6 +32,7 @@ public function isBackupCode(object $user, string $code): bool
         return false;
     }
 
+    #[\Override]
     public function invalidateBackupCode(object $user, string $code): void
     {
         if ($user instanceof User) {
diff --git a/src/Console/DisableTwoFactorUserCommand.php b/src/Console/DisableTwoFactorUserCommand.php
@@ -17,6 +17,7 @@
 )]
 final class DisableTwoFactorUserCommand extends UsersCommand
 {
+    #[\Override]
     protected function configure(): void
     {
         $this->addArgument(
@@ -26,6 +27,7 @@ protected function configure(): void
         );
     }
 
+    #[\Override]
     protected function execute(InputInterface $input, OutputInterface $output): int
     {
         $io = new SymfonyStyle($input, $output);
diff --git a/src/Console/UsersCommand.php b/src/Console/UsersCommand.php
@@ -23,6 +23,7 @@ public function __construct(
         parent::__construct($managerRegistry, $name);
     }
 
+    #[\Override]
     protected function getUserTableRow(User $user): array
     {
         $twoFactorUser = $this->twoFactorUserProvider->getFromUser($user);
diff --git a/src/DependencyInjection/Compiler/DoctrineMigrationCompilerPass.php b/src/DependencyInjection/Compiler/DoctrineMigrationCompilerPass.php
@@ -9,6 +9,7 @@
 
 class DoctrineMigrationCompilerPass implements CompilerPassInterface
 {
+    #[\Override]
     public function process(ContainerBuilder $container): void
     {
         if ($container->hasDefinition('doctrine.migrations.configuration')) {
diff --git a/src/DependencyInjection/RoadizTwoFactorExtension.php b/src/DependencyInjection/RoadizTwoFactorExtension.php
@@ -11,6 +11,7 @@
 
 class RoadizTwoFactorExtension extends Extension
 {
+    #[\Override]
     public function getAlias(): string
     {
         return 'roadiz_two_factor';
@@ -19,6 +20,7 @@ public function getAlias(): string
     /**
      * @throws \Exception
      */
+    #[\Override]
     public function load(array $configs, ContainerBuilder $container): void
     {
         $loader = new YamlFileLoader($container, new FileLocator(dirname(__DIR__).'/../config'));
diff --git a/src/Entity/TwoFactorUser.php b/src/Entity/TwoFactorUser.php
@@ -121,11 +121,13 @@ public function setDigits(?int $digits): TwoFactorUser
         return $this;
     }
 
+    #[\Override]
     public function isTotpAuthenticationEnabled(): bool
     {
         return (bool) $this->secret && null !== $this->activatedAt;
     }
 
+    #[\Override]
     public function getTotpAuthenticationUsername(): string
     {
         if (null === $this->user) {
@@ -135,12 +137,14 @@ public function getTotpAuthenticationUsername(): string
         return $this->user->getUserIdentifier();
     }
 
+    #[\Override]
     public function getTotpAuthenticationConfiguration(): ?TotpConfigurationInterface
     {
         // You could persist the other configuration options in the user entity to make it individual per user.
         return new TotpConfiguration($this->secret, $this->getAlgorithm(), $this->getPeriod(), $this->getDigits());
     }
 
+    #[\Override]
     public function isGoogleAuthenticatorEnabled(): bool
     {
         return (bool) $this->secret
@@ -151,6 +155,7 @@ public function isGoogleAuthenticatorEnabled(): bool
         ;
     }
 
+    #[\Override]
     public function getGoogleAuthenticatorUsername(): string
     {
         if (null === $this->user) {
@@ -160,6 +165,7 @@ public function getGoogleAuthenticatorUsername(): string
         return $this->user->getUserIdentifier();
     }
 
+    #[\Override]
     public function getGoogleAuthenticatorSecret(): ?string
     {
         return $this->secret;
@@ -168,11 +174,12 @@ public function getGoogleAuthenticatorSecret(): ?string
     /**
      * Check if it is a valid backup code.
      */
+    #[\Override]
     public function isBackupCode(string $code): bool
     {
         // Loop over all backup codes and check if the code is valid
         foreach ($this->backupCodes as $backupCode) {
-            if (password_verify($code, $backupCode)) {
+            if (password_verify($code, (string) $backupCode)) {
                 return true;
             }
         }
@@ -183,11 +190,12 @@ public function isBackupCode(string $code): bool
     /**
      * Invalidate a backup code.
      */
+    #[\Override]
     public function invalidateBackupCode(string $code): void
     {
         // Loop over all backup codes and check if the code is valid to invalidate it
         foreach ($this->backupCodes as $key => $backupCode) {
-            if (password_verify($code, $backupCode)) {
+            if (password_verify($code, (string) $backupCode)) {
                 unset($this->backupCodes[$key]);
                 $this->backupCodes = array_values($this->backupCodes);
             }
@@ -204,6 +212,7 @@ public function addBackUpCode(string $backUpCode): void
         }
     }
 
+    #[\Override]
     public function getTrustedTokenVersion(): int
     {
         return $this->trustedVersion;
diff --git a/src/EventSubscriber/UserActionsMenuEventSubscriber.php b/src/EventSubscriber/UserActionsMenuEventSubscriber.php
@@ -4,10 +4,10 @@
 
 namespace RZ\Roadiz\TwoFactorBundle\EventSubscriber;
 
+use RZ\Roadiz\RozierBundle\Event\UserActionsMenuEvent;
 use Symfony\Bundle\SecurityBundle\Security;
 use Symfony\Component\EventDispatcher\EventSubscriberInterface;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
-use Themes\Rozier\Event\UserActionsMenuEvent;
 
 final readonly class UserActionsMenuEventSubscriber implements EventSubscriberInterface
 {
@@ -17,6 +17,7 @@ public function __construct(
     ) {
     }
 
+    #[\Override]
     public static function getSubscribedEvents(): array
     {
         return [
diff --git a/src/Form/TwoFactorCodeActivationType.php b/src/Form/TwoFactorCodeActivationType.php
@@ -13,6 +13,7 @@
 
 class TwoFactorCodeActivationType extends AbstractType
 {
+    #[\Override]
     public function buildForm(FormBuilderInterface $builder, array $options): void
     {
         $builder
diff --git a/src/RoadizTwoFactorBundle.php b/src/RoadizTwoFactorBundle.php
@@ -10,11 +10,13 @@
 
 class RoadizTwoFactorBundle extends Bundle
 {
+    #[\Override]
     public function getPath(): string
     {
         return \dirname(__DIR__);
     }
 
+    #[\Override]
     public function build(ContainerBuilder $container): void
     {
         parent::build($container);
diff --git a/src/Security/Provider/AuthenticatorTwoFactorProvider.php b/src/Security/Provider/AuthenticatorTwoFactorProvider.php
@@ -22,6 +22,7 @@ public function __construct(
     ) {
     }
 
+    #[\Override]
     public function beginAuthentication(AuthenticationContextInterface $context): bool
     {
         $user = $context->getUser();
@@ -48,10 +49,12 @@ public function beginAuthentication(AuthenticationContextInterface $context): bo
         return true;
     }
 
+    #[\Override]
     public function prepareAuthentication(object $user): void
     {
     }
 
+    #[\Override]
     public function validateAuthenticationCode(object $user, string $authenticationCode): bool
     {
         if ($user instanceof User) {
@@ -65,6 +68,7 @@ public function validateAuthenticationCode(object $user, string $authenticationC
         return $this->authenticator->checkCode($user, $authenticationCode);
     }
 
+    #[\Override]
     public function getFormRenderer(): TwoFactorFormRendererInterface
     {
         return $this->formRenderer;
diff --git a/src/Security/Provider/TwoFactorUserProvider.php b/src/Security/Provider/TwoFactorUserProvider.php
@@ -17,13 +17,15 @@ public function __construct(
     ) {
     }
 
+    #[\Override]
     public function getFromUser(User $user): ?TwoFactorUser
     {
         return $this->managerRegistry
             ->getRepository(TwoFactorUser::class)
             ->findOneBy(['user' => $user]);
     }
 
+    #[\Override]
     public function createForUser(User $user): TwoFactorUser
     {
         $twoFactorUser = $this->getFromUser($user);
@@ -40,18 +42,21 @@ public function createForUser(User $user): TwoFactorUser
         return $twoFactorUser;
     }
 
+    #[\Override]
     public function activate(TwoFactorUser $user): void
     {
         $user->setActivatedAt(new \DateTime());
         $this->managerRegistry->getManager()->flush();
     }
 
+    #[\Override]
     public function disable(TwoFactorUser $user): void
     {
         $this->managerRegistry->getManager()->remove($user);
         $this->managerRegistry->getManager()->flush();
     }
 
+    #[\Override]
     public function generateBackupCodes(TwoFactorUser $user): array
     {
         $length = $user->getDigits();
diff --git a/translations/messages.en.xlf b/translations/messages.en.xlf
diff --git a/translations/messages.fr.xlf b/translations/messages.fr.xlf

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,7 @@ public function __construct(`
`18`	`18`	`) {`
`19`	`19`	`}`
`20`	`20`
	`21`	`+ #[\Override]`
`21`	`22`	`public function isBackupCode(object $user, string $code): bool`
`22`	`23`	`{`
`23`	`24`	`if ($user instanceof User) {`
`@@ -31,6 +32,7 @@ public function isBackupCode(object $user, string $code): bool`
`31`	`32`	`return false;`
`32`	`33`	`}`
`33`	`34`
	`35`	`+ #[\Override]`
`34`	`36`	`public function invalidateBackupCode(object $user, string $code): void`
`35`	`37`	`{`
`36`	`38`	`if ($user instanceof User) {`
Original file line number	Diff line number	Diff line change
`@@ -17,6 +17,7 @@`
`17`	`17`	`)]`
`18`	`18`	`final class DisableTwoFactorUserCommand extends UsersCommand`
`19`	`19`	`{`
	`20`	`+ #[\Override]`
`20`	`21`	`protected function configure(): void`
`21`	`22`	`{`
`22`	`23`	`$this->addArgument(`
`@@ -26,6 +27,7 @@ protected function configure(): void`
`26`	`27`	`);`
`27`	`28`	`}`
`28`	`29`
	`30`	`+ #[\Override]`
`29`	`31`	`protected function execute(InputInterface $input, OutputInterface $output): int`
`30`	`32`	`{`
`31`	`33`	`$io = new SymfonyStyle($input, $output);`
Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,7 @@ public function __construct(`
`23`	`23`	`parent::__construct($managerRegistry, $name);`
`24`	`24`	`}`
`25`	`25`
	`26`	`+ #[\Override]`
`26`	`27`	`protected function getUserTableRow(User $user): array`
`27`	`28`	`{`
`28`	`29`	`$twoFactorUser = $this->twoFactorUserProvider->getFromUser($user);`
Original file line number	Diff line number	Diff line change
`@@ -9,6 +9,7 @@`
`9`	`9`
`10`	`10`	`class DoctrineMigrationCompilerPass implements CompilerPassInterface`
`11`	`11`	`{`
	`12`	`+ #[\Override]`
`12`	`13`	`public function process(ContainerBuilder $container): void`
`13`	`14`	`{`
`14`	`15`	`if ($container->hasDefinition('doctrine.migrations.configuration')) {`
Original file line number	Diff line number	Diff line change
`@@ -11,6 +11,7 @@`
`11`	`11`
`12`	`12`	`class RoadizTwoFactorExtension extends Extension`
`13`	`13`	`{`
	`14`	`+ #[\Override]`
`14`	`15`	`public function getAlias(): string`
`15`	`16`	`{`
`16`	`17`	`return 'roadiz_two_factor';`
`@@ -19,6 +20,7 @@ public function getAlias(): string`
`19`	`20`	`/**`
`20`	`21`	`* @throws \Exception`
`21`	`22`	`*/`
	`23`	`+ #[\Override]`
`22`	`24`	`public function load(array $configs, ContainerBuilder $container): void`
`23`	`25`	`{`
`24`	`26`	`$loader = new YamlFileLoader($container, new FileLocator(dirname(__DIR__).'/../config'));`
Original file line number	Diff line number	Diff line change
`@@ -121,11 +121,13 @@ public function setDigits(?int $digits): TwoFactorUser`
`121`	`121`	`return $this;`
`122`	`122`	`}`
`123`	`123`
	`124`	`+ #[\Override]`
`124`	`125`	`public function isTotpAuthenticationEnabled(): bool`
`125`	`126`	`{`
`126`	`127`	`return (bool) $this->secret && null !== $this->activatedAt;`
`127`	`128`	`}`
`128`	`129`
	`130`	`+ #[\Override]`
`129`	`131`	`public function getTotpAuthenticationUsername(): string`
`130`	`132`	`{`
`131`	`133`	`if (null === $this->user) {`
`@@ -135,12 +137,14 @@ public function getTotpAuthenticationUsername(): string`
`135`	`137`	`return $this->user->getUserIdentifier();`
`136`	`138`	`}`
`137`	`139`
	`140`	`+ #[\Override]`
`138`	`141`	`public function getTotpAuthenticationConfiguration(): ?TotpConfigurationInterface`
`139`	`142`	`{`
`140`	`143`	`// You could persist the other configuration options in the user entity to make it individual per user.`
`141`	`144`	`return new TotpConfiguration($this->secret, $this->getAlgorithm(), $this->getPeriod(), $this->getDigits());`
`142`	`145`	`}`
`143`	`146`
	`147`	`+ #[\Override]`
`144`	`148`	`public function isGoogleAuthenticatorEnabled(): bool`
`145`	`149`	`{`
`146`	`150`	`return (bool) $this->secret`
`@@ -151,6 +155,7 @@ public function isGoogleAuthenticatorEnabled(): bool`
`151`	`155`	`;`
`152`	`156`	`}`
`153`	`157`
	`158`	`+ #[\Override]`
`154`	`159`	`public function getGoogleAuthenticatorUsername(): string`
`155`	`160`	`{`
`156`	`161`	`if (null === $this->user) {`
`@@ -160,6 +165,7 @@ public function getGoogleAuthenticatorUsername(): string`
`160`	`165`	`return $this->user->getUserIdentifier();`
`161`	`166`	`}`
`162`	`167`
	`168`	`+ #[\Override]`
`163`	`169`	`public function getGoogleAuthenticatorSecret(): ?string`
`164`	`170`	`{`
`165`	`171`	`return $this->secret;`
`@@ -168,11 +174,12 @@ public function getGoogleAuthenticatorSecret(): ?string`
`168`	`174`	`/**`
`169`	`175`	`* Check if it is a valid backup code.`
`170`	`176`	`*/`
	`177`	`+ #[\Override]`
`171`	`178`	`public function isBackupCode(string $code): bool`
`172`	`179`	`{`
`173`	`180`	`// Loop over all backup codes and check if the code is valid`
`174`	`181`	`foreach ($this->backupCodes as $backupCode) {`
`175`		`- if (password_verify($code, $backupCode)) {`
	`182`	`+ if (password_verify($code, (string) $backupCode)) {`
`176`	`183`	`return true;`
`177`	`184`	`}`
`178`	`185`	`}`
`@@ -183,11 +190,12 @@ public function isBackupCode(string $code): bool`
`183`	`190`	`/**`
`184`	`191`	`* Invalidate a backup code.`
`185`	`192`	`*/`
	`193`	`+ #[\Override]`
`186`	`194`	`public function invalidateBackupCode(string $code): void`
`187`	`195`	`{`
`188`	`196`	`// Loop over all backup codes and check if the code is valid to invalidate it`
`189`	`197`	`foreach ($this->backupCodes as $key => $backupCode) {`
`190`		`- if (password_verify($code, $backupCode)) {`
	`198`	`+ if (password_verify($code, (string) $backupCode)) {`
`191`	`199`	`unset($this->backupCodes[$key]);`
`192`	`200`	`$this->backupCodes = array_values($this->backupCodes);`
`193`	`201`	`}`
`@@ -204,6 +212,7 @@ public function addBackUpCode(string $backUpCode): void`
`204`	`212`	`}`
`205`	`213`	`}`
`206`	`214`
	`215`	`+ #[\Override]`
`207`	`216`	`public function getTrustedTokenVersion(): int`
`208`	`217`	`{`
`209`	`218`	`return $this->trustedVersion;`
Original file line number	Diff line number	Diff line change
`@@ -4,10 +4,10 @@`
`4`	`4`
`5`	`5`	`namespace RZ\Roadiz\TwoFactorBundle\EventSubscriber;`
`6`	`6`
	`7`	`+use RZ\Roadiz\RozierBundle\Event\UserActionsMenuEvent;`
`7`	`8`	`use Symfony\Bundle\SecurityBundle\Security;`
`8`	`9`	`use Symfony\Component\EventDispatcher\EventSubscriberInterface;`
`9`	`10`	`use Symfony\Component\Routing\Generator\UrlGeneratorInterface;`
`10`		`-use Themes\Rozier\Event\UserActionsMenuEvent;`
`11`	`11`
`12`	`12`	`final readonly class UserActionsMenuEventSubscriber implements EventSubscriberInterface`
`13`	`13`	`{`
`@@ -17,6 +17,7 @@ public function __construct(`
`17`	`17`	`) {`
`18`	`18`	`}`
`19`	`19`
	`20`	`+ #[\Override]`
`20`	`21`	`public static function getSubscribedEvents(): array`
`21`	`22`	`{`
`22`	`23`	`return [`