adjust to workflow moved to security

[dbu]

Q	A
Bug fix?	no
New feature?	no
BC breaks?	no
Deprecations?	no
Tests pass?	-
Fixed tickets
License	MIT
Doc PR	-

Adjust to symfony-cmf/core-bundle#59

[dbu]

as discovered in the core bundle, this will fail if there is no firewall configured. we could also inject the workflow service from core, but only if it is enabled. we probably need something here to make the check optional.

[dbu]

should we allow null here and skip the check if no security context is defined?

[dantleech]

If this were optional I would prefer it to be a setter. Though, I'm +0 on making SecurityContext optional, in I think the security component is inevitable in most cases.

[dbu]

yeah. i created symfony-cmf/core-bundle#69 - what
do you think about that, would this be a solution?

[dantleech]

I think makes some sense in terms of cleaner code, but doesn't help with getting rid of dependencies.

[dantleech]

But I am +0 for dependencies here, and probably +1 for the PWFAlways checker, although I have never used anything like that so not really in a position to express a strong opinion.

[dbu]

this is adjusted to the now merged CoreBundle. @dantleech would be great if you can review this until tomorrow so we can tag the release

[dantleech]

I wonder if VIEW is the best name. VIEW_UNPUBLISHED?

[dbu]

that name is part of the pr on core. VIEW is the right thing because
that plays well with checks if a user is allowed to do the VIEW
operation. we do not check the permission if the user is allowed to VIEW
unpublished documents, just if he is allowed to VIEW this document.

everything else is handled in the publish workflow checker.