Make CSRF tokens better named (#1131)

Author: melroy89

src/Controller/Admin/AdminMagazineOwnershipRequestController.php

@@ -32,7 +32,7 @@ public function requests(Request $request): Response
     #[IsGranted('ROLE_ADMIN')]
     public function accept(Magazine $magazine, User $user, Request $request): Response
     {
-        $this->validateCsrf('admin_magazine_ownership_requests_accept', $request->request->get('token'));
+        $this->validateCsrf('admin_magazine_ownership_requests_accept', $request->getPayload()->get('token'));
 
         $this->manager->acceptOwnershipRequest($magazine, $user, $this->getUserOrThrow());
 
@@ -42,7 +42,7 @@ public function accept(Magazine $magazine, User $user, Request $request): Respon
     #[IsGranted('ROLE_ADMIN')]
     public function reject(Magazine $magazine, User $user, Request $request): Response
     {
-        $this->validateCsrf('admin_magazine_ownership_requests_reject', $request->request->get('token'));
+        $this->validateCsrf('admin_magazine_ownership_requests_reject', $request->getPayload()->get('token'));
 
         $this->manager->toggleOwnershipRequest($magazine, $user);
 

src/Controller/Admin/AdminModeratorController.php

@@ -49,7 +49,7 @@ public function moderators(Request $request): Response
     #[IsGranted('ROLE_ADMIN')]
     public function removeModerator(User $user, Request $request): Response
     {
-        $this->validateCsrf('remove_moderator', $request->request->get('token'));
+        $this->validateCsrf('remove_moderator', $request->getPayload()->get('token'));
 
         $this->manager->removeModerator($user);
 

src/Controller/BoostController.php

@@ -23,7 +23,7 @@ public function __construct(
     #[IsGranted('ROLE_USER')]
     public function __invoke(VotableInterface $subject, Request $request): Response
     {
-        $this->validateCsrf('boost', $request->request->get('token'));
+        $this->validateCsrf('boost', $request->getPayload()->get('token'));
 
         $this->manager->vote(VotableInterface::VOTE_UP, $subject, $this->getUserOrThrow());
 

src/Controller/Domain/DomainBlockController.php

@@ -22,7 +22,7 @@ public function __construct(
     #[IsGranted('ROLE_USER')]
     public function block(Domain $domain, Request $request): Response
     {
-        $this->validateCsrf('block', $request->request->get('token'));
+        $this->validateCsrf('block', $request->getPayload()->get('token'));
 
         $this->manager->block($domain, $this->getUserOrThrow());
 
@@ -36,7 +36,7 @@ public function block(Domain $domain, Request $request): Response
     #[IsGranted('ROLE_USER')]
     public function unblock(Domain $domain, Request $request): Response
     {
-        $this->validateCsrf('block', $request->request->get('token'));
+        $this->validateCsrf('block', $request->getPayload()->get('token'));
 
         $this->manager->unblock($domain, $this->getUserOrThrow());
 

src/Controller/Domain/DomainSubController.php

@@ -22,7 +22,7 @@ public function __construct(
     #[IsGranted('ROLE_USER')]
     public function subscribe(Domain $domain, Request $request): Response
     {
-        $this->validateCsrf('subscribe', $request->request->get('token'));
+        $this->validateCsrf('subscribe', $request->getPayload()->get('token'));
 
         $this->manager->subscribe($domain, $this->getUserOrThrow());
 
@@ -36,7 +36,7 @@ public function subscribe(Domain $domain, Request $request): Response
     #[IsGranted('ROLE_USER')]
     public function unsubscribe(Domain $domain, Request $request): Response
     {
-        $this->validateCsrf('subscribe', $request->request->get('token'));
+        $this->validateCsrf('subscribe', $request->getPayload()->get('token'));
 
         $this->manager->unsubscribe($domain, $this->getUserOrThrow());
 

src/Controller/Entry/Comment/EntryCommentChangeAdultController.php

@@ -31,7 +31,7 @@ public function __invoke(
         EntryComment $comment,
         Request $request
     ): Response {
-        $this->validateCsrf('change_adult', $request->request->get('token'));
+        $this->validateCsrf('change_adult', $request->getPayload()->get('token'));
 
         $comment->isAdult = 'on' === $request->get('adult');
 

src/Controller/Entry/Comment/EntryCommentDeleteController.php

@@ -32,7 +32,7 @@ public function delete(
         EntryComment $comment,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_comment_delete', $request->request->get('token'));
+        $this->validateCsrf('entry_comment_delete', $request->getPayload()->get('token'));
 
         $this->manager->delete($this->getUserOrThrow(), $comment);
 
@@ -50,7 +50,7 @@ public function restore(
         EntryComment $comment,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_comment_restore', $request->request->get('token'));
+        $this->validateCsrf('entry_comment_restore', $request->getPayload()->get('token'));
 
         $this->manager->restore($this->getUserOrThrow(), $comment);
 
@@ -68,7 +68,7 @@ public function purge(
         EntryComment $comment,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_comment_purge', $request->request->get('token'));
+        $this->validateCsrf('entry_comment_purge', $request->getPayload()->get('token'));
 
         $this->manager->purge($this->getUserOrThrow(), $comment);
 

src/Controller/Entry/EntryChangeAdultController.php

@@ -28,7 +28,7 @@ public function __invoke(
         Entry $entry,
         Request $request
     ): Response {
-        $this->validateCsrf('change_adult', $request->request->get('token'));
+        $this->validateCsrf('change_adult', $request->getPayload()->get('token'));
 
         $entry->isAdult = 'on' === $request->get('adult');
 

src/Controller/Entry/EntryChangeMagazineController.php

@@ -30,7 +30,7 @@ public function __invoke(
         Entry $entry,
         Request $request
     ): Response {
-        $this->validateCsrf('change_magazine', $request->request->get('token'));
+        $this->validateCsrf('change_magazine', $request->getPayload()->get('token'));
 
         $newMagazine = $this->repository->findOneByName($request->get('change_magazine')['new_magazine']);
 

src/Controller/Entry/EntryDeleteController.php

@@ -29,7 +29,7 @@ public function delete(
         Entry $entry,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_delete', $request->request->get('token'));
+        $this->validateCsrf('entry_delete', $request->getPayload()->get('token'));
 
         $this->manager->delete($this->getUserOrThrow(), $entry);
 
@@ -50,7 +50,7 @@ public function restore(
         Entry $entry,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_restore', $request->request->get('token'));
+        $this->validateCsrf('entry_restore', $request->getPayload()->get('token'));
 
         $this->manager->restore($this->getUserOrThrow(), $entry);
 
@@ -66,7 +66,7 @@ public function purge(
         Entry $entry,
         Request $request
     ): Response {
-        $this->validateCsrf('entry_purge', $request->request->get('token'));
+        $this->validateCsrf('entry_purge', $request->getPayload()->get('token'));
 
         $this->manager->purge($this->getUserOrThrow(), $entry);