IBX-8470: Upgraded codebase to Symfony 6

[alongosz]

Caution

This is a part of bigger set of changes, to be merged together when ready

• ❗ Remove TMP commits before merge ❗

🎫 Issue	IBX-8470

Related PRs:

• IBX-8470: Bumped Symfony to version 6 doctrine-schema#27
• IBX-8470: Upgraded codebase to Symfony 6 solr#78

Description:

ℹ️ Browser tests failure is expected until all OSS packages are upgraded.

Composer packages bump:

• symfony/* to ^6.4
• jms/translation-bundle to ^2.4
• friendsofsymfony/jsrouting-bundle to ^3.5

Essential changes:

• Declared strict return types for class methods extending/overriding 3rd party packages, that are either already there in bumped version or will be there for sure in the future
• Aligned strict types for method arguments overriding 3rd party packages
• Fixed Symfony DI PHP API setDeprecated usage (it will most likely disappear after merging deprecation removal changes)
• Fixed octal value representation in Yaml (e.g. 0644 -> 0o644)
• Removed obsolete configuration parameters from Symfony DI semantic config
• Aligned usage of 3rd party PHP API with the upgraded versions of those packages
• Aligned tests with both current changes and 3rd party packages changes
• Replaced usage of deprecated utf8_decode PHP function with mb_convert_encoding

DX:

• Added strict types to some properties in the vicinity of or related to the upgraded code
  • BinaryFile is an example which gave most trouble due to us relying on uninitialized properties, fixed now
• Added or fixed PHPDocs
• Refactored pieces of touched code to be more readable (helping also understanding what's going on there while trying to fix it after the version bump)
• Improved code quality of tests

Maintenance:

• [PHPStan] Added to the baseline serializer issues (postponed to SF 7, where PropertyNormalizer is final)
• [PHPUnit] Configured exact numbers of self, direct, and indirect deprecation to have more control over what's changed.

QA:

TBD if we want to merge it if all green or test everything manually before.

Documentation:

• Dropped obsolete Ibexa\Core\MVC\Symfony\Security\InteractiveLoginToken. Seems this was some Symfony 2 auth leftover. Mentioned in the User authentication Doc needs to be dropped or changed as well (there should be a task for this already, just wasn't able to find it ATM).
• Dropped from \Ibexa\Core\MVC\Symfony\Security\UserWrapped obsolete methods: getPassword, getSalt, getUsername and implemented the new one getUserIdentifier.

[Steveb-p]

This raises my eyebrow.

We are checking the class declared for metadata driver. Which means we are, in effect, checking that Doctrine\ORM\Mapping\Driver\YamlDriver contains yml string?

Can you check at runtime what is actually happening here? Since I'm not sure this actually works as intended.

I don't expect us to "fix it" here. But if you're touching this code (I assume since you've seen PHPStan report it) I'd rather have it checked.

[alongosz]

This raises my eyebrow.

We are checking the class declared for metadata driver. Which means we are, in effect, checking that Doctrine\ORM\Mapping\Driver\YamlDriver contains yml string?

Can you check at runtime what is actually happening here? Since I'm not sure this actually works as intended.

I don't expect us to "fix it" here. But if you're touching this code (I assume since you've seen PHPStan report it) I'd rather have it checked.

I can only guess as the test that is there (\Ibexa\Tests\Bundle\Core\DependencyInjection\Compiler\InjectEntityManagerMappingPassTest) probably checks assumed values. This was an extension point and I wasn't sure how it was used.

Keep in mind that ORM used to allow keeping mappings in either Yaml or XML format. Maybe it's related to that?

I can drop it, but only if you're sure that no longer applies. At runtime OOTB we have only annotation type present.

[Steveb-p]

Yes, it can be either XML, YAML or annotations/attributes. It's just that class name would not contain yml string, since the driver is named YamlDriver.

Worst case leave it as is, but it should be checked. It's a potential bug that was probably unnoticed, because majority of projects are using annotations.

[sonarcloud]

Quality Gate passed

Issues
6 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.4% Duplication on New Code

See analysis details on SonarQube Cloud

[konradoboza]

As mentioned in one of my comments below, I would switch more towards constructor property promotion (not necessarily within the scope of this PR).

[konradoboza]

Suggested change

	* @param bool $public Files are public by default
	* @param bool $public files are public by default

[konradoboza]

Why (this is one of the examples of course) this cannot be constructor-promoted property? I feel like we should incorporate this rule more consistently.

[Steveb-p]

Given the amount of changes in scope, I assume we are not doing this - effectively a code style change - in this PR. The primary goal is to allow Symfony 6 to work, and everything else is optional.

If we have time to do so - great.

[konradoboza]

I am ok with that, just wanted to highlight as I tried to move into that directions when I was tinkering with the code related to security layer.