symfony
diff --git a/‎best_practices/security.rst
Copy file name to clipboardExpand all lines: best_practices/security.rst
+13-9Lines changed: 13 additions & 9 deletions b/‎best_practices/security.rst
Copy file name to clipboardExpand all lines: best_practices/security.rst
+13-9Lines changed: 13 additions & 9 deletions
@@ -221,10 +221,6 @@ more advanced use-case, you can always do the same security check in PHP:
 
 .. code-block:: php
 
-    use Symfony\Component\Security\Core\Exception\AccessDeniedException;
-
-    // ...
-
     /**
      * @Route("/{id}/edit", name="admin_post_edit")
      */
@@ -238,7 +234,16 @@ more advanced use-case, you can always do the same security check in PHP:
         }
 
         if (!$post->isAuthor($this->getUser())) {
-            throw new AccessDeniedException();
+            $this->denyAccessUnlessGranted('edit', $post);
+
+	    // or without the shortcut:
+	    //
+	    // use Symfony\Component\Security\Core\Exception\AccessDeniedException;
+	    // ...
+	    //
+	    // if (!$this->get('security.authorization_checker')->isGranted('edit', $post)) {
+	    //    throw $this->createAccessDeniedException();
+	    // }
         }
 
         // ...
@@ -327,10 +332,6 @@ via the even easier shortcut in a controller:
 
 .. code-block:: php
 
-    use Symfony\Component\Security\Core\Exception\AccessDeniedException;
-
-    // ...
-
     /**
      * @Route("/{id}/edit", name="admin_post_edit")
      */
@@ -342,6 +343,9 @@ via the even easier shortcut in a controller:
 
         // or without the shortcut:
         //
+        // use Symfony\Component\Security\Core\Exception\AccessDeniedException;
+        // ...
+        //
         // if (!$this->get('security.authorization_checker')->isGranted('edit', $post)) {
         //    throw $this->createAccessDeniedException();
         // }