Symfony + FOSUserBundle无法登录

时间:2016-06-09 14:21:08

标签: php fosuserbundle symfony symfony-security

我正在使用带有FOSUserBundle的Symfony 3.1。

我在Symfony中阅读了文档并集成了FOS,好了,注册似乎运行良好并且将数据保存到数据库中,但是,如果我尝试登录,我会再次作为匿名用户重定向到登录页面

我检查了Symfony Profiler,我可以看到当它被称为路径/ login_check(在探查器中)时,用户结果经过身份验证,但是在/ login_check阶段之后,当我被重定向时,用户是匿名的...

-

来自探查器的

/ login_check:

物业价值

角色[ROLE_USER]

继承角色无

令牌类Symfony \ Component \ Security \ Core \ Authentication \ Token \ UsernamePasswordToken

-

会话似乎存在(dump(app.session))不为空,但没有用户的存储数据。

那是我的security.yml:

安全性:

encoders:
    FOS\UserBundle\Model\UserInterface: bcrypt

role_hierarchy:
    ROLE_ADMIN:       ROLE_USER
    ROLE_SUPER_ADMIN: ROLE_ADMIN

providers:
    fos_userbundle:
        id: fos_user.user_provider.username

firewalls:
    # disables authentication for assets and the profiler, adapt it according to your needs
    dev:
        pattern: ^/(_(profiler|wdt)|css|images|js)/
        security: false

    main:
        pattern: ^/
        form_login:
            provider: fos_userbundle
            login_path: /login
            check_path: /login_check
            default_target_path: /redirLogIn
#                csrf_token_generator: security.csrf.token_manager

        logout:       true
        anonymous:    true

access_control:
    - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
#        - { path: ^/admin.*, role: ROLE_ADMIN}
#        - { path: ^/, role: ROLE_USER}

(由于注册问题,我禁用了csrf令牌)

(这是一个内联网,没有“主页”,当您打开要求登录的网站时)

为什么会这样?

由于

2 个答案:

答案 0 :(得分:0)

您需要改进文件中的缩进

security:
    encoders:
        FOS\UserBundle\Model\UserInterface: bcrypt

    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: ROLE_ADMIN
    # http://symfony.com/doc/current/book/security.html#where-do-users-come-from-user-providers
    providers:
        in_memory:
            memory: ~
        fos_userbundle:
            id: fos_user.user_provider.username_email
    firewalls:
        # disables authentication for assets and the profiler, adapt it according to your needs
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false

        main:
            # activate different ways to authenticate

            # http_basic: ~
            # http://symfony.com/doc/current/book/security.html#a-configuring-how-your-users-will-authenticate

            # form_login: ~
            # http://symfony.com/doc/current/cookbook/security/form_login_setup.html
            pattern: ^/
            form_login:
                provider: fos_userbundle
                csrf_token_generator: security.csrf.token_manager
                # if you are using Symfony < 2.8, use the following config instead:
                # csrf_provider: form.csrf_provider

            logout:       true
            anonymous:    true

    access_control:
            - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
            - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
            - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
            - { path: ^/admin/, role: ROLE_ADMIN }

答案 1 :(得分:0)

我不确定我理解你提出的问题,但也许这就是你打开网站时被指示登录的原因?

如果是这样,这就是原因:

default_target_path: /redirLogIn

将上述内容更改为您需要的路径(路线)。

相关问题
最新问题