TechQA.

SensioFrameworkExtraBundle vs JMSSecurityExtraBundle

738 views Asked by At

I was trying to evaluate the best among JMSSecurityExtraBundle and SensioFrameworkExtraBundle. First is a popular security bundle and the other listed in symfony2 website.

While both provide the annotations to secure the methods of a controller via @Secure in JMS and @Security in Sensio, JMS security bundle provides more security options See here

I would like to ask the community which is the best bundle for Symfony 2.4

security symfony symfony-2.4
Original Q&A
1

There are 1 answers

3
Nicolai Fröhlich On BEST ANSWER

The @Security annotation was added to SensioFrameworkExtraBundle in version 2.4 of the bundle !

That means it does NOT work with a Symfony version < 2.4 because this version of the bundle requires the ExpressionLanguage component that was added in Symfony 2.4 to work.

Have a look at the bundle's composer.json.

Further the @Security annotation only works for controller classes because the check is performed in a subscriber that listens for the kernel.controller event.

The JMSSecurityExtraBundle can be configured to work with all defined services (not just controller classes). Further it ...

  • works with symfony versions < 2.4
  • provides slightly more features (i.e. the is_expr_granted twig function for symfony versions < 2.4)
  • is less performant (due to it's architecture)
  • uses a different license (Apache instead of MIT)

Hope that clarifies it a bit.

Related Questions in SECURITY

Related Questions in SYMFONY

Related Questions in SYMFONY-2.4

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions