upgraded mezzio-oauth2 to version 3 by pinclau · Pull Request #511 · dotkernel/api

pinclau · 2026-04-24T06:31:41Z

No description provided.

Signed-off-by: Claudiu <claudiupintiuta@gmail.com>

github-actions · 2026-04-24T06:34:45Z

Qodana for PHP

It seems all right 👌

No new problems were found according to the checks applied

💡 Qodana analysis was run in the pull request mode: only the changed files were checked
☁️ View the detailed Qodana report

Detected 108 dependencies

Third-party software list

This page lists the third-party software dependencies used in project

Dependency	Version	Licenses
brick/math	0.14.8	MIT
brick/varexporter	0.6.0	MIT
defuse/php-encryption	v2.4.0	MIT
doctrine/collections	2.6.0	MIT
doctrine/common	3.5.0	MIT
doctrine/data-fixtures	2.2.1	MIT
doctrine/dbal	4.4.3	MIT
doctrine/deprecations	1.1.6	MIT
doctrine/event-manager	2.1.1	MIT
doctrine/inflector	2.1.0	MIT
doctrine/instantiator	2.0.0	MIT
doctrine/lexer	3.0.1	MIT
doctrine/migrations	3.9.7	MIT
doctrine/orm	3.6.3	MIT
doctrine/persistence	4.1.1	MIT
dotkernel/dot-cache	4.4.0	MIT
dotkernel/dot-cli	3.10.0	MIT
dotkernel/dot-data-fixtures	1.5.0	MIT
dotkernel/dot-dependency-injection	1.3.0	MIT
dotkernel/dot-errorhandler	4.0.2	MIT
dotkernel/dot-event	4.4.0	MIT
dotkernel/dot-log	4.0.5	MIT
dotkernel/dot-mail	5.4.2	MIT
dotkernel/dot-response-header	3.6.0	MIT
dotkernel/dot-router	1.1.0	MIT
egulias/email-validator	4.0.4	MIT
fig/http-message-util	1.1.5	MIT
laminas/laminas-authentication	2.19.0	BSD-3-Clause
laminas/laminas-cli	1.15.0	BSD-3-Clause
laminas/laminas-component-installer	3.7.0	BSD-3-Clause
laminas/laminas-config-aggregator	1.19.0	BSD-3-Clause
laminas/laminas-diactoros	3.8.0	BSD-3-Clause
laminas/laminas-escaper	2.18.0	BSD-3-Clause
laminas/laminas-eventmanager	3.15.0	BSD-3-Clause
laminas/laminas-filter	2.42.0	BSD-3-Clause
laminas/laminas-httphandlerrunner	2.13.0	BSD-3-Clause
laminas/laminas-hydrator	4.18.0	BSD-3-Clause
laminas/laminas-inputfilter	2.35.0	BSD-3-Clause
laminas/laminas-permissions-acl	2.18.0	BSD-3-Clause
laminas/laminas-permissions-rbac	3.8.0	BSD-3-Clause
laminas/laminas-servicemanager	3.24.0	BSD-3-Clause
laminas/laminas-stdlib	3.21.0	BSD-3-Clause
laminas/laminas-stratigility	4.3.0	BSD-3-Clause
laminas/laminas-validator	2.65.0	BSD-3-Clause
lcobucci/clock	3.5.0	MIT
lcobucci/jwt	5.6.0	BSD-3-Clause
league/event	3.0.3	MIT
league/oauth2-server	9.3.0	MIT
league/uri-interfaces	7.8.1	MIT
league/uri	7.8.1	MIT
mezzio/mezzio-authentication-oauth2	3.0.1	BSD-3-Clause
mezzio/mezzio-authentication	1.13.0	BSD-3-Clause
mezzio/mezzio-authorization-acl	1.13.0	BSD-3-Clause
mezzio/mezzio-authorization-rbac	1.10.0	BSD-3-Clause
mezzio/mezzio-authorization	1.11.0	BSD-3-Clause
mezzio/mezzio-cors	1.16.0	BSD-3-Clause
mezzio/mezzio-fastroute	3.14.0	BSD-3-Clause
mezzio/mezzio-hal	2.13.0	BSD-3-Clause
mezzio/mezzio-helpers	5.20.0	BSD-3-Clause
mezzio/mezzio-problem-details	1.19.0	BSD-3-Clause
mezzio/mezzio-router	3.20.0	BSD-3-Clause
mezzio/mezzio-template	3.0.0	BSD-3-Clause
mezzio/mezzio	3.27.0	BSD-3-Clause
nikic/fast-route	v1.3.0	BSD-3-Clause
nikic/php-parser	v5.7.0	BSD-3-Clause
paragonie/random_compat	v9.99.100	MIT
phpstan/phpdoc-parser	2.3.2	MIT
psr/cache	3.0.0	MIT
psr/clock	1.0.0	MIT
psr/container	1.1.2	MIT
psr/event-dispatcher	1.0.0	MIT
psr/http-client	1.0.3	MIT
psr/http-factory	1.1.0	MIT
psr/http-message	2.0	MIT
psr/http-server-handler	1.0.2	MIT
psr/http-server-middleware	1.0.2	MIT
psr/link	1.1.1	MIT
psr/log	3.0.2	MIT
ramsey/collection	2.1.1	MIT
ramsey/uuid-doctrine	2.1.0	MIT
ramsey/uuid	4.9.2	MIT
roave/psr-container-doctrine	6.0.0	BSD-2-Clause
spatie/array-to-xml	3.4.4	MIT
symfony/cache-contracts	v3.6.0	MIT
symfony/cache	v7.4.8	MIT
symfony/console	v7.4.8	MIT
symfony/deprecation-contracts	v3.6.0	MIT
symfony/event-dispatcher-contracts	v3.6.0	MIT
symfony/event-dispatcher	v7.4.8	MIT
symfony/filesystem	v7.4.8	MIT
symfony/finder	v7.4.8	MIT
symfony/mailer	v7.4.8	MIT
symfony/mime	v7.4.8	MIT
symfony/polyfill-ctype	v1.36.0	MIT
symfony/polyfill-intl-grapheme	v1.36.0	MIT
symfony/polyfill-intl-idn	v1.36.0	MIT
symfony/polyfill-intl-normalizer	v1.36.0	MIT
symfony/polyfill-mbstring	v1.36.0	MIT
symfony/polyfill-php84	v1.36.0	MIT
symfony/service-contracts	v3.6.1	MIT
symfony/stopwatch	v7.4.8	MIT
symfony/string	v7.4.8	MIT
symfony/var-exporter	v7.4.8	MIT
symfony/yaml	v7.4.8	MIT
webimpress/safe-writer	2.2.0	BSD-2-Clause
webmozart/assert	1.12.1	MIT
willdurand/negotiation	3.1.0	MIT
zircote/swagger-php	5.8.3	Apache-2.0

Contact Qodana team

Contact us at qodana-support@jetbrains.com

Or via our issue tracker: https://jb.gg/qodana-issue
Or share your feedback: https://jb.gg/qodana-discussions

alexmerlin

Please test these changes (especially the ones in src/Core) in Dotkernel Admin 7 as well.

alexmerlin · 2026-04-24T07:47:39Z

    [
        'source'      => 'vendor/dotkernel/dot-mail/config/mail.global.php.dist',
-        'destination' => 'config/autoload/mail.global.php',
+        'destination' => 'config/autoload/mail.local.php',


We intentionally keep this file like this.

Reason:

As long as the file was not added manually into a project, we want to make sure that the latest version of vendor/dotkernel/dot-mail/config/mail.global.php.dist is being used.

alexmerlin · 2026-04-24T07:53:04Z

        }

-        if (array_key_exists('identity', $data) && $data['identity'] !== null && ! $admin->hasIdentity()) {
+        if (array_key_exists('identity', $data) && $data['identity'] !== null) {


The reason we added && ! $admin->hasIdentity() was to make sure that an identity once set, will not be modified (as long as the saveAdmin() method is used).

This was added as an extra security step after the identity field was removed from src/Admin/src/InputFilter/UpdateAdminInputFilter.php.

alexmerlin · 2026-04-24T08:03:32Z

+    protected string $identity;

    #[ORM\Column(name: 'password', type: 'string', length: 191)]
    protected ?string $password = null;


Couldn't this be not nullable like the password field from src/Core/src/Admin/src/Entity/Admin.php?

alexmerlin · 2026-04-24T08:04:18Z

        }

-        if (array_key_exists('identity', $data) && $data['identity'] !== null && ! $user->hasIdentity()) {
+        if (array_key_exists('identity', $data) && $data['identity'] !== null) {


Same note as with src/Admin/src/Service/AdminService.php.

pinclau requested review from alexmerlin and arhimede April 24, 2026 06:31

upgraded mezzio-oauth2 to version 3

965c39b

Signed-off-by: Claudiu <claudiupintiuta@gmail.com>

pinclau force-pushed the issue-508 branch from cf42f19 to 965c39b Compare April 24, 2026 06:34

pinclau linked an issue Apr 24, 2026 that may be closed by this pull request

Implement v3 of mezzio oauth2 #508

Open

alexmerlin requested changes Apr 24, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

upgraded mezzio-oauth2 to version 3#511

upgraded mezzio-oauth2 to version 3#511
pinclau wants to merge 1 commit into7.0from
issue-508

pinclau commented Apr 24, 2026

Uh oh!

github-actions Bot commented Apr 24, 2026 •

edited

Loading

Third-party software list

Uh oh!

alexmerlin left a comment

Uh oh!

alexmerlin Apr 24, 2026

Uh oh!

alexmerlin Apr 24, 2026

Uh oh!

alexmerlin Apr 24, 2026

Uh oh!

alexmerlin Apr 24, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

pinclau commented Apr 24, 2026

Uh oh!

github-actions Bot commented Apr 24, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Qodana for PHP

Third-party software list

Uh oh!

alexmerlin left a comment

Choose a reason for hiding this comment

Uh oh!

alexmerlin Apr 24, 2026

Choose a reason for hiding this comment

Reason:

Uh oh!

alexmerlin Apr 24, 2026

Choose a reason for hiding this comment

Uh oh!

alexmerlin Apr 24, 2026

Choose a reason for hiding this comment

Uh oh!

alexmerlin Apr 24, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

github-actions Bot commented Apr 24, 2026 •

edited

Loading