OpenConext
diff --git a/‎ci/qa/rector.php‎
Lines changed: 1 addition & 1 deletion b/‎ci/qa/rector.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Surfnet/StepupRa/RaBundle/Tests/DependencyInjection/ConfigurationTest.php‎
Lines changed: 6 additions & 6 deletions b/‎src/Surfnet/StepupRa/RaBundle/Tests/DependencyInjection/ConfigurationTest.php‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/Surfnet/StepupRa/RaBundle/Tests/Security/Session/SessionLifetimeGuardTest.php‎
Lines changed: 20 additions & 20 deletions b/‎src/Surfnet/StepupRa/RaBundle/Tests/Security/Session/SessionLifetimeGuardTest.php‎
Lines changed: 20 additions & 20 deletions
diff --git a/‎src/Surfnet/StepupRa/RaBundle/Tests/Security/Session/SessionStorageTest.php‎
Lines changed: 32 additions & 32 deletions b/‎src/Surfnet/StepupRa/RaBundle/Tests/Security/Session/SessionStorageTest.php‎
Lines changed: 32 additions & 32 deletions
@@ -13,7 +13,7 @@
     ])
     // uncomment to reach your current PHP version
 //     ->withPhpSets()
-//    ->withAttributesSets(all: true)
+    ->withAttributesSets(all: true)
     ->withComposerBased(twig: true, doctrine: true, phpunit: true, symfony: true)
 //    ->withTypeCoverageLevel(0)
 //    ->withDeadCodeLevel(0)
 
@@ -28,8 +28,8 @@ final class ConfigurationTest extends TestCase
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_requires_second_factors_to_be_configured()
     {
         $configuration = [
@@ -44,8 +44,8 @@ public function it_requires_second_factors_to_be_configured()
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_requires_session_timeout_configuration()
     {
         $configuration = ['enabled_second_factors' => ['sms']];
@@ -55,8 +55,8 @@ public function it_requires_session_timeout_configuration()
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_requires_maximum_absolute_timeout_to_be_configured()
     {
         $configuration = [
@@ -69,8 +69,8 @@ public function it_requires_maximum_absolute_timeout_to_be_configured()
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_requires_maximum_relative_timeout_to_be_configured()
     {
         $configuration = [
@@ -83,17 +83,17 @@ public function it_requires_maximum_relative_timeout_to_be_configured()
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_allows_one_enabled_second_factor()
     {
         $this->assertConfigurationIsValid([['enabled_second_factors' => ['sms']]], 'enabled_second_factors');
     }
 
     /**
      * @test
-     * @group configuration
      */
+    #[\PHPUnit\Framework\Attributes\Group('configuration')]
     public function it_allows_two_enabled_second_factors()
     {
         $this->assertConfigurationIsValid([['enabled_second_factors' => ['sms', 'yubikey']]], 'enabled_second_factors');
 
@@ -39,9 +39,9 @@ public function tearDown(): void
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_without_logged_authentication_is_within_absolute_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(100));
@@ -53,9 +53,9 @@ public function an_authentication_session_without_logged_authentication_is_withi
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_without_logged_authentication_is_within_relative_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(100));
@@ -67,9 +67,9 @@ public function an_authentication_session_without_logged_authentication_is_withi
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_without_logged_authentication_is_within_limits()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(100));
@@ -81,9 +81,9 @@ public function an_authentication_session_without_logged_authentication_is_withi
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_a_lifetime_within_the_absolute_timeframe_is_within_the_absolute_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(1));
@@ -97,9 +97,9 @@ public function an_authentication_session_with_a_lifetime_within_the_absolute_ti
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_a_lifetime_of_exactly_the_absolute_timeframe_is_within_the_absolute_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(1));
@@ -113,9 +113,9 @@ public function an_authentication_session_with_a_lifetime_of_exactly_the_absolut
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_a_lifetime_longer_than_the_absolute_timeframe_is_outside_the_absolute_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(1));
@@ -129,9 +129,9 @@ public function an_authentication_session_with_a_lifetime_longer_than_the_absolu
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_an_interaction_within_the_relative_timeframe_is_within_the_relative_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1), TimeFrame::ofSeconds(1000));
@@ -145,9 +145,9 @@ public function an_authentication_session_with_an_interaction_within_the_relativ
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_an_interaction_after_exactly_the_relative_timeframe_is_within_the_relative_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1), TimeFrame::ofSeconds(1000));
@@ -161,9 +161,9 @@ public function an_authentication_session_with_an_interaction_after_exactly_the_
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_with_an_interaction_after_the_relative_timeframe_is_outside_the_relative_limit()
     {
         $sessionLifetimeGuard = new SessionLifetimeGuard(TimeFrame::ofSeconds(1000), TimeFrame::ofSeconds(1));
@@ -177,14 +177,14 @@ public function an_authentication_session_with_an_interaction_after_the_relative
 
     /**
      * @test
-     * @group        security
-     * @group        session
      * @dataProvider bothLimitsVerificationProvider
      *
      * @param bool          $isValid
      * @param null|DateTime $authenticationMoment
      * @param null|DateTime $interactionMoment
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_authentication_session_is_verified_against_both_limits(
         $isValid,
         DateTime $authenticationMoment = null,
 
@@ -39,9 +39,9 @@ public function tearDown(): void
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_authentication_moment_can_be_logged()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -54,9 +54,9 @@ public function the_authentication_moment_can_be_logged()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_authentication_moment_cannot_be_logged_twice()
     {
         $this->expectException(LogicException::class);
@@ -69,9 +69,9 @@ public function the_authentication_moment_cannot_be_logged_twice()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function whether_or_not_an_authentication_moment_is_logged_can_be_queried()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -86,9 +86,9 @@ public function whether_or_not_an_authentication_moment_is_logged_can_be_queried
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function a_logged_authentication_moment_can_be_retrieved()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -105,9 +105,9 @@ public function a_logged_authentication_moment_can_be_retrieved()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function attempting_to_retrieve_an_authentication_moment_when_not_yet_logged_causes_an_exception_to_be_thrown()
     {
         $this->expectException(LogicException::class);
@@ -120,9 +120,9 @@ public function attempting_to_retrieve_an_authentication_moment_when_not_yet_log
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_interaction_can_be_logged()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -135,9 +135,9 @@ public function an_interaction_can_be_logged()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_moment_of_interaction_can_be_retrieved()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -154,9 +154,9 @@ public function the_moment_of_interaction_can_be_retrieved()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function an_interaction_is_logged_when_an_authentication_is_logged()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -179,9 +179,9 @@ public function an_interaction_is_logged_when_an_authentication_is_logged()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_moment_of_interaction_can_be_updated()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -206,9 +206,9 @@ public function the_moment_of_interaction_can_be_updated()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_existence_of_a_moment_interaction_can_be_queried()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -223,9 +223,9 @@ public function the_existence_of_a_moment_interaction_can_be_queried()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_current_uri_can_be_stored_in_the_session()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -240,9 +240,9 @@ public function the_current_uri_can_be_stored_in_the_session()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function a_request_id_can_be_stored_in_the_session()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -257,9 +257,9 @@ public function a_request_id_can_be_stored_in_the_session()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function the_presence_of_a_request_id_can_be_queried()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -275,9 +275,9 @@ public function the_presence_of_a_request_id_can_be_queried()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function a_stored_request_id_can_be_cleared()
     {
         $fakeRequestStack = new FakeRequestStack();
@@ -298,9 +298,9 @@ public function a_stored_request_id_can_be_cleared()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function a_session_can_be_invalidated()
     {
         $session = Mockery::mock(SessionInterface::class)
@@ -317,9 +317,9 @@ public function a_session_can_be_invalidated()
 
     /**
      * @test
-     * @group security
-     * @group session
      */
+    #[\PHPUnit\Framework\Attributes\Group('security')]
+    #[\PHPUnit\Framework\Attributes\Group('session')]
     public function a_session_can_be_migrated()
     {
         $session = Mockery::mock(SessionInterface::class)