/** * @Route("/set-private-{year}-confirm/{token}", requirements={"year" = "\d+"}, name="placements_setprivate_confirm") */ public function setPrivateConfirmAction(Year $year, $token) { $csrf = $this->get('form.csrf_provider'); if (!$csrf->isCsrfTokenValid('setprivate_placements', $token)) { $this->get('session')->getFlashBag()->add('error', 'Token invalide !'); return $this->redirect($this->generateUrl('placement_list_year', array('year' => $year->getYear()))); } $em = $this->getDoctrine()->getManager(); $year->setPlacementsPublic(false); $em->flush(); return $this->redirect($this->generateUrl('placement_list_year', array('year' => $year->getYear()))); }