Symfony3在登录时立即丢失用户会话

I moved my Symfony3 app from shared hosting to a new VPS I just set up. When I try to log into the app (using a casual FOSUserBundle form), Symfony does log me in only to disconnect me on next page reload. Which is "instantly" because the first thing a successful login does, is redirect to a page.

What I tried :

I disabled redirection, which allows me to see I am connected on the 'login_check' page. I know this as the Symfony Debug Toolbar shows my name. Only not anymore after redirection.
I can see there is no PHPSESSID in my cookies anywhere at any time. I think it is the cookie in charge of keeping my Symfony session alive. So...
I tried different php scripts to check my VPS config. It does handle cookies and PHP sessions well.
I even installed a Wordpress in a subfolder, it handles my session and cookies perfectly.
The server folder Symfony uses to store sessions is the same used by Wordpress. And session files do appear on Symfony login attempt. (although sometimes they are just empty files...!?)
Upgrading FOSUB and Symfony to latest versions. No changes.

I'm using Symfony 3.4.6 and FOSUB 2.0.0. Any idea?

UPDATE: Security.yml

# https://symfony.com/doc/current/security.html#b-configuring-how-users-are-loaded
providers:
    fos_userbundle:
        id: fos_user.user_provider.username_email

firewalls:
    main:
        pattern: ^/
        form_login:
            provider: fos_userbundle
            check_path:     fos_user_security_check
            failure_path:   fos_user_security_login
            login_path: /fr/public/login
            default_target_path: app_homepage
        logout:
            path: fos_user_security_logout
            target: fos_user_security_login
        anonymous:    true


access_control:
    # Allow anonymous logging for these page:
    - { path: ^/$, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/fr/$, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/fr/public/*, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/fr/lab, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/fr/help, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/cron, role: IS_AUTHENTICATED_ANONYMOUSLY }
    # Techs pages
    - { path: ^/_console, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/_wdt, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/_profiler, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/_error, role: IS_AUTHENTICATED_ANONYMOUSLY }
    # Staff only
    - { path: ^/fr/staff/, role: ROLE_STAFF }
    - { path: ^/fr/staff/*, role: ROLE_STAFF }
    # Admin only
    - { path: ^/fr/admin/, role: ROLE_ADMIN }
    - { path: ^/fr/admin/*, role: ROLE_ADMIN }
    # All other pages need to be logged
    - { path: ^/*, role: [IS_AUTHENTICATED_FULLY,IS_AUTHENTICATED_REMEMBERED] }

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

3条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
douna5529 2018-04-23 07:52
关注
So, the issue resides both in cookies and SSL. When installing my app on my new server, it took some time to transfer my SSL certificate, so the URL of my site was HTTP and not HTTPS.

The browser though, kept using a Symfony user session cookie called PHPSESSID that was added with the HTTPS protocol. For an unknown reason, the presence of this obsolete cookie prevented logging, without returning any error.

Plus I was using Firefox's EditThisCookie plugin which didn't show the presence of the PHPSESSID cookie. Although the browser still considered it.

So, for anyone experiencing the same (very specific) issue: Find and delete the PHPSESSID cookie that may be hard to find because not exactly under the same protocol. In Firefox: Web-debugger > Storage > Cookies.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(2条)

报告相同问题？

关注问题

Symfony3在登录时立即丢失用户会话 php symfony
2018-04-12 07:57

回答 3 已采纳 So, the issue resides both in cookies and SSL. When installing my app on my new server, it took so
在Symfony 3 Controller中获取请求和会话 php symfony
2015-12-16 12:36

回答 3 已采纳 It's because you are trying to get a non existent service in your controller. In a symfony control
配置用户和角色时出现Symfony php错误 php symfony
2018-05-11 15:27

回答 1 已采纳 Change your access control to - { path: '^/', roles: ROLE_INKOPER }
PHP与Angular详细对比帮助你选择合适的项目技术
2023-12-29 10:46

WPHunter的博客本文将解决关于PHP与Angular的争论，并帮助您为下一个项目选择最合适的技术。
如何在symfony 3中查看其他用户登录信息 php symfony
2017-07-31 08:39

回答 2 已采纳 To tackle this issue, you would first need to define what logged in really means in your case. Bec
如何避免通过JSON在Symfony 3中返回用户密码 json php symfony
2017-11-16 20:16

回答 1 已采纳 You would need to define the Serializer groups with the desired getters assigned. See: https://sym
Symfony 3在执行SELECT NEXTVAL时发生异常 php symfony
2017-07-10 14:05

回答 1 已采纳 I just run this command to see the diff between code and DB php bin/console doctrine:schema:updat
CodeIgniter + uploadify 在 IE 下会话丢失问题的解决方案
2014-06-23 20:05

weixin_33768481的博客 id ,而是通过自己的规则生成的（这里也就能说明为什么我在firefox、chrome中不会因为session_id丢失会话的原因）。CodeIgniter session类相关代码截图如下：其次是因为诸如uploadify,swfupload采用的都...
在Symfony应用程序之间共享会话 php symfony
2017-10-30 14:15

回答 1 已采纳 Obviously you can't share session files without sharing the classes, which is hardly an option con
Symfony - 在onKernelRequest中使用twig杀死会话 php symfony
2019-06-02 11:35

回答 2 已采纳 Found the solution - problem is the injection of the twig-environment in the constructor - without
在Symfony 3中禁止弃用警告 php symfony
2018-10-17 07:57

回答 1 已采纳 Had to postpone the problem for a few days, then I noticed my mistake: The suggestion from this an
Laravel 的 HTTP 会话机制——Session
2020-05-30 18:21

szuaudi的博客本篇从[Session |《Laravel 5.5 中文文档 5.5》| Laravel China 社区](https://learnku.com/docs/laravel/5.5/session/1301)入手，结合laravel源码分析HTTP会话机制。
Symfony3单元测试表单在无效数据时始终有效 php symfony
2017-09-30 12:20

回答 1 已采纳 Your form is always valid because your new ConstraintViolationList() is empty. I can suggest you
PHP 面试题汇总
2019-10-29 22:30

Yohann丶blog的博客 1. PHP执行的时候有如下执行过程：Scanning(Lexing) - Compilation - Execution - Parsing，其含义分别为(C) A、将PHP代码转换为语言片段(Tokens)、将Tokens转换成简单而有意义的表达式、顺次执行Opcodes、将表达式...
php8.0.0 正式版发布
2020-12-14 15:00

hartyu的博客下载地址：https://windows.php.net/download/ 2020年11月26日 BZ2：修复了错误＃71263（fread（）不报告bzip2.decompress错误）。 CLI：允许调试服务器通过-S localhost：0绑定到临时端口。 COM： ...
PHP面试题大全
2019-12-20 09:54

Rudon滨海渔村的博客系统限制，只显示了2902行，请下载完整版： ...回答：PHP全称：Hypertext Preprocessor，是一种用来开发动态网站的服务器脚本语言。问题：什么是MVC？回答：MVC由Model（模型）, View（视图...
PHP知识点集合
2019-10-22 18:54

Qimi_的博客而使用静态变量时，该变量会在函数第一次被调用时被初始化，初始化后该变量也不会被清除，当再次调用该函数时，这个静态变量不再被初始化，而能保存上次函数执行完后的值。可以说静态变量在所有对该函数的调用之间...
Symfony2Book15：服务容器
2017-11-21 23:44

weixin_33851177的博客现代的PHP应用程序是完全面向对象的。一个对象也许方便地发送电子邮件消息，而另一个对象也许让持久化信息到数据库。在你的应用程序中，你也许创建一个...在本章，我们讨论Symfony2中一个特殊的PHP对象，它可以帮助...
【Laravel系列7.3】Session与响应
2022-06-02 18:02

码农老张Zy的博客 Session与响应Session 这个东西还需要多说？学 PHP 或者任何 Web 开发语言的入门课好不好！既然这么说，那么看来你是没用过 Laravel 自带的 Session 呀，Laravel 的 Session 可不是用得 PHP ...另外，请求流程我们在...
没有解决我的问题, 去提问

悬赏问题

¥15 echarts动画效果失效的问题。官网下载的例子。
¥60 许可证msc licensing软件报错显示已有相同版本软件，但是下一步显示无法读取日志目录。
¥15 Attention is all you need 的代码运行
¥15 一个服务器已经有一个系统了如果用usb再装一个系统，原来的系统会被覆盖掉吗
¥15 使用esm_msa1_t12_100M_UR50S蛋白质语言模型进行零样本预测时，终端显示出了sequence handled的进度条，但是并不出结果就自动终止回到命令提示行了是怎么回事：
¥15 前置放大电路与功率放大电路相连放大倍数出现问题
¥30 关于<main>标签页面跳转的问题
¥80 部署运行web自动化项目
¥15 腾讯云如何建立同一个项目中物模型之间的联系
¥30 VMware 云桌面水印如何添加

Symfony3在登录时立即丢失用户会话

3条回答 默认 最新

悬赏问题

3条回答默认最新