revert #5271 on the 2.6 branch

symfony · weaverryan · May 23, 2015 · May 23, 2015 · May 23, 2015 · adf6f36231745098effe542f40bcd61ba68c1865
commit adf6f36231745098effe542f40bcd61ba68c1865
diff --git a/best_practices/security.rst b/best_practices/security.rst
@@ -221,10 +221,6 @@ more advanced use-case, you can always do the same security check in PHP:

 .. code-block:: php

-    use Symfony\Component\Security\Core\Exception\AccessDeniedException;
-
-    // ...
-
    /**
     * @Route("/{id}/edit", name="admin_post_edit")
     */
@@ -238,7 +234,16 @@ more advanced use-case, you can always do the same security check in PHP:
        }

        if (!$post->isAuthor($this->getUser())) {
-            throw new AccessDeniedException();
+            $this->denyAccessUnlessGranted('edit', $post);
+
+	    // or without the shortcut:
+	    //
+	    // use Symfony\Component\Security\Core\Exception\AccessDeniedException;
+	    // ...
+	    //
+	    // if (!$this->get('security.authorization_checker')->isGranted('edit', $post)) {
+	    //    throw $this->createAccessDeniedException();
+	    // }
        }

        // ...
@@ -327,10 +332,6 @@ via the even easier shortcut in a controller:

 .. code-block:: php

-    use Symfony\Component\Security\Core\Exception\AccessDeniedException;
-
-    // ...
-
    /**
     * @Route("/{id}/edit", name="admin_post_edit")
     */
@@ -342,6 +343,9 @@ via the even easier shortcut in a controller:

        // or without the shortcut:
        //
+        // use Symfony\Component\Security\Core\Exception\AccessDeniedException;
+        // ...
+        //
        // if (!$this->get('security.authorization_checker')->isGranted('edit', $post)) {
        //    throw $this->createAccessDeniedException();
        // }