无法使Symfony身份验证工作

I've been working on a Symfony project and the authentication process is becoming a headache. It seems the configuration files are OK, but when I test, the login page just refreshes an does not authenticate, but it doesn't show any errors either. Someone can help me figure out what I'm missing here?

My security.yml file is like this (I'm using md5 because I'm working on a legacy user base and the %app.locale% I just added because I was thinking maybe the locale prefix in routes was causing this problem):

security:
    access_denied_url: 403
    encoders:
        PsicoBundle\Entity\Usuario:
            algorithm: md5
            encode_as_base64: false
            iterations: 0

    providers:
        in_memory:
            memory: ~

        our_db_provider:
            entity:
                class: PsicoBundle:Entity:Usuario

    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false

        main:
            anonymous: ~
            provider: our_db_provider
            form_login:
                login_path: /%app.locales%/login
                check_path: /%app.locales%/login
                default_target_path: /%app.locales%/dashboard
                always_use_default_target_path: true
            logout:
                path: /%app.locales%/logout
                target: /%app.locales%/login

    access_control:
        - { path: ^/%app.locales%/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: /%app.locales%/manage, roles: ROLE_SUPER }
        - { path: /%app.locales%/dashboard, roles: [ROLE_USER, ROLE_SUPER] }

This is how my User Entity looks like:

<?php

namespace PsicoBundle\Entity;

use Doctrine\Common\Collections\ArrayCollection;
use Doctrine\ORM\Mapping as ORM;
use Symfony\Component\Security\Core\User\AdvancedUserInterface;
use Symfony\Component\Validator\Constraints as Assert;

use JMS\Serializer\Annotation\ExclusionPolicy;
use JMS\Serializer\Annotation\Expose;
//use Gedmo\Mapping\Annotation as Gedmo;

/**
 * @ORM\Table(name="usuarios")
 * @ORM\Entity(repositoryClass="PsicoBundle\Repository\UsuarioRepository")
 * @ORM\HasLifecycleCallbacks
 *  
 * @ExclusionPolicy("all")
 */

class Usuario implements AdvancedUserInterface, \Serializable {


    /**
     * @ORM\Column(type="integer")
     * @ORM\Id
     * @ORM\GeneratedValue(strategy="AUTO")
     * @Expose
     */
    private $id;

    /**
     * @ORM\Column(type="string")
     * @Assert\NotNull()
     * @Expose
     */
    private $nome;


    /**
     * @ORM\Column(type="string", name="senha")
     * @Expose
     */
    private $password;

    /**
     * @ORM\Column(type="string", name="endereco")
     */
    private $endereco;

    /**
     * @ORM\Column(type="string", length=15, name="telefone")
     */
    private $telefone;

    /**
     * @ORM\Column(type="string", length=15, name="celular")
     */
    private $celular;

    /**
     * @ORM\ManyToOne(targetEntity="Cidade")
     */
    private $cidade;

    /**
     * @ORM\ManyToOne(targetEntity="Idioma")
     */
    private $idioma;

    /**
     * @ORM\Column(type="string", name="email")
     * @Assert\NotNull()
     * @Expose
     */
    private $email;

    /**
     * @ORM\Column(type="boolean")
     * @Expose
     */
    private $ativo;

    /**
     * @ORM\ManyToMany(targetEntity="TipoUsuario", inversedBy="usuarios")
     */
    private $tiposUsuario;


    public function __construct() {
        $this->ativo = true;
        $this->tiposUsuario = new ArrayCollection();
    }

    public function getId() {
        return $this->id;
    }

    public function setId($id) {
        $this->id = $id;
    }

    public function getUsername() {
        return $this->email;
    }

    public function setUsername($username) {
        $this->email = $username;
    }

    public function getEmail() {
        return $this->email;
    }

    public function setEmail($email) {
        $this->email = $email;
    }

    public function getPassword() {
        return $this->password;
    }

    public function setPassword($password) {
        $this->password = $password;
    }

    public function isEnabled() {
        return $this->ativo;
    }


    public function setAtivo($ativo) {
        $this->ativo = $ativo;
    }

    public function getRoles() {
        return $this->tiposUsuario->toArray();
    }

    public function getPermissao() {
        return $this->tiposUsuario;
    }

    public function getNome() {
        return $this->nome;
    }

    public function setNome($nome) {
        $this->nome = $nome;
    }

    public function serialize() {
        return serialize(array(
            $this->id,
            $this->email,
            $this->password,
            $this->ativo,
            $this->tiposUsuario
        ));
    }

    public function unserialize($serialized) {
        list (
            $this->id,
            $this->email,
            $this->password,
            $this->ativo,
            $this->tiposUsuario
            ) = unserialize($serialized);
    }

    public function getSalt() {
        return null;
    }

    public function eraseCredentials() {

    }

    public function setRoles($tiposUsuario) {
        $this->tiposUsuario = $tiposUsuario;
    }

    /**
     * @return mixed
     */
    public function getEndereco()
    {
        return $this->endereco;
    }

    /**
     * @param mixed $endereco
     */
    public function setEndereco($endereco)
    {
        $this->endereco = $endereco;
    }

    /**
     * @return mixed
     */
    public function getTelefone()
    {
        return $this->telefone;
    }

    /**
     * @param mixed $telefone
     */
    public function setTelefone($telefone)
    {
        $this->telefone = $telefone;
    }

    /**
     * @return mixed
     */
    public function getCelular()
    {
        return $this->celular;
    }

    /**
     * @param mixed $celular
     */
    public function setCelular($celular)
    {
        $this->celular = $celular;
    }


    /**
     * @return mixed
     */
    public function getCidade()
    {
        return $this->cidade;
    }

    /**
     * @param mixed $cidade
     */
    public function setCidade($cidade)
    {
        $this->cidade = $cidade;
    }

    /**
     * @return mixed
     */
    public function getTiposUsuario()
    {
        return $this->tiposUsuario;
    }

    /**
     * @param mixed $tiposUsuario
     */
    public function setTiposUsuario($tiposUsuario)
    {
        $this->tiposUsuario = $tiposUsuario;
    }


    public function isAccountNonExpired()
    {
        return true;
    }

    public function isAccountNonLocked()
    {
        return true;
    }

    public function isCredentialsNonExpired()
    {
        return true;
    }

    /**
     * @return mixed
     */
    public function getIdioma()
    {
        return $this->idioma;
    }


    /**
     * @param mixed $idioma
     */
    public function setIdioma($idioma)
    {
        $this->idioma = $idioma;
    }

}

I also have the Repository class to query the user by its e-mail, tha follows:

 <?php

namespace PsicoBundle\Repository;

use Symfony\Bridge\Doctrine\Security\User\UserLoaderInterface;
use Symfony\Component\Security\Core\User\UserInterface;
use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
use Doctrine\ORM\EntityRepository;

class UsuarioRepository extends EntityRepository implements UserLoaderInterface
{

    public function loadUserByUsername($username)
    {
        $user = $this->createQueryBuilder()
            ->select('u, g')
            ->from('PsicoBundle:Usuario', 'u')
            ->leftJoin('u.tiposUsuario', 'g')
            ->where('u.email = :email')
            ->setParameter('email', $username)
            ->getQuery()
            ->getOneOrNullResult();

        if (null == $user) {
            $message = sprintf('Usuário com credencial "%s" não encontrado', $username);
            throw new UsernameNotFoundException($message);
        }

        return $user;
    }


}

And my form is like this:

        <form class="m-t" role="form" action="{{ path('login') }}" method="post" id="login-form">
            <div class="form-group">
                <input type="email" class="form-control" placeholder="E-mail" required="" name="_username" value="{{ last_username }}">
            </div>
            <div class="form-group">
                <input type="password" class="form-control" placeholder="{{ 'field.password'|trans }}" required="" name="_password">
            </div>
            <button type="submit" class="btn btn-primary block full-width m-b" name="login">Login</button>

            <p class="text-muted text-center"><small>{{ 'login.calltoaction.text'|trans }}</small></p>
            <a class="btn btn-sm btn-white btn-block" href="{{ path('cadastro_gratis') }}">{{ 'login.testbutton.text'|trans }}</a>
        </form>

The symfony's debug information window show that I'm legged in as anon. And the only thing dev's log shows me is this:

   [2016-12-14 10:59:16] request.INFO: Matched route "{route}". {"route":"_wdt","route_parameters":{"_controller":"web_profiler.controller.profiler:toolbarAction","token":"fe495d","_route":"_wdt"},"request_uri":"http://localhost:8000/_wdt/fe495d","method":"GET"} []
[2016-12-14 11:04:51] request.INFO: Matched route "{route}". {"route":"login","route_parameters":{"_controller":"PsicoBundle\\Controller\\SecurityController::loginAction","_locale":"en","_route":"login"},"request_uri":"http://localhost:8000/en/login","method":"POST"} []
[2016-12-14 11:04:51] security.INFO: Populated the TokenStorage with an anonymous Token. [] []
[2016-12-14 11:04:52] request.INFO: Matched route "{route}". {"route":"_wdt","route_parameters":{"_controller":"web_profiler.controller.profiler:toolbarAction","token":"b4915e","_route":"_wdt"},"request_uri":"http://localhost:8000/_wdt/b4915e","method":"GET"} []

I have an user in my database to test it, and this user has both of the Roles. Can someone help me in this? Thank you guys.

</div>

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

dongsou3041 2016-12-14 21:10

关注

Finally figured out what I was doing wrong. In My security.yml I was using the /%app.locales%/ parameter defined in my config.yml as pt_BR|en|es when I should've matched the routes prefix I set in rounting.yml - {_locale) - changed the prefix in my security file routes and authentication went back to normal.

And also had to take the annotation routes from my controller and insert it in routing.yml

So my routing now is:

psico:
    resource: "@PsicoBundle/Controller/"
    type:     annotation
    prefix:   /{_locale}
    requirements:
        _locale: "%app.locales%"

login:
    path: /{_locale}/login
    defaults: { _controller: PsicoBundle:Security:login}
    requirements:
        _locale: "%app.locales%"

logout:
    path: /{_locale}/logout
    defaults: { _controller: PsicoBundle:Security:logout}
    requirements:
        _locale: "%app.locales%"

And my Security is:

security:
access_denied_url: 403
encoders:
    PsicoBundle\Entity\Usuario:
        algorithm: md5
        encode_as_base64: false
        iterations: 0

# http://symfony.com/doc/current/book/security.html#where-do-users-come-from-user-providers
providers:
    our_db_provider:
        entity:
            class: PsicoBundle:Usuario
            property: email

firewalls:
    # disables authentication for assets and the profiler, adapt it according to your needs
    dev:
        pattern: ^/(_(profiler|wdt)|css|images|js)/
        security: false

    main:
        anonymous: ~
        provider: our_db_provider
        form_login:
            login_path: login
            check_path: login
            default_target_path: /dashboard
            always_use_default_target_path: true
            username_parameter: _username
            password_parameter: _password
        logout:
            path: logout
            target: /

access_control:
    - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: /manage, roles: ROLE_USER }
    - { path: /dashboard, roles: ROLE_USER }

Thank you, @MohamedBenHenda for helping me trying to solve this.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

查看更多回答(1条)

报告相同问题？

关注问题

无法使Symfony身份验证工作 php symfony
2016-12-14 13:45

回答 2 已采纳 Finally figured out what I was doing wrong. In My security.yml I was using the /%app.locales%/ par
Symfony LexikJWTAuthenticationBundle无法进行身份验证 php symfony
2016-12-22 21:34

回答 1 已采纳 You need to remove the in memory user provider: providers: fos_userbundle: id: fos_u
Symfony自定义身份验证提供程序根据请求重叠注销 php symfony
2018-06-14 01:33

回答 4 已采纳 make the following changes to your authenticators to keep the session management to symfony: src/
您的Symfony REST API的JWT身份验证-PHP开发
2021-05-27 07:41

LexikJWTAuthenticationBundle该捆绑包为您的Symfony API提供JWT（Json Web令牌）身份验证。它与Symfony 3.4和4.2上PHP 5.5、7.2、7.3兼容并经过测试。文档大量LexikJWTAuthenticationBundle该捆绑包为您的Symfony...
Symfony根据远程API对用户进行身份验证 php symfony
2018-02-08 16:55

回答 2 已采纳 It's not so clear what he meant, but i think the best solution is storing it in the session variab
在Symfony 3中通过LDAP进行身份验证 php symfony
2016-08-17 15:18

回答 3 已采纳 I solved my issue by changing dn_string: 'uid={username},dc=global,dc=com' to dn_string: global\{u
Symfony 2.3登录表单未进行身份验证 php symfony
2014-11-07 22:14

回答 2 已采纳 Turns out the issue was actually with the Session entity / table in which I was storing my session
LexikJWTAuthenticationBundle：您的Symfony REST API的JWT身份验证
2021-02-05 18:09

LexikJWTAuthenticationBundle 该捆绑包为您的Symfony API提供了JWT（Json Web令牌）身份验证。它与Symfony 3.4、4.x和5.x上PHP 5.6、7.3、7.4、8.0兼容并经过测试。文献资料文档的大部分存储在此捆绑软件的目录中...
在Symfony中使用HWIOAuth进行Twitter身份验证 php symfony
2015-08-01 18:10

回答 1 已采纳 The problem was with the screwed config. In the config.yml (for Twitter), you have to give the Con
使用{Google / Facebook / etc}登录进行PHP Symfony身份验证/授权 php symfony
2014-01-26 23:20

回答 2 已采纳 For implementing Google/Facebook sign in, HWIOAuth Bundle is a great choice. It supports more than
从上下文Symfony中删除经过身份验证的用户 php symfony
2016-01-28 09:59

回答 2 已采纳 you can try this : $this->get('security.token_storage')->setToken(null); $this->get('req
BrouzieCrossdomainAuthBundle:Symfony2的跨域身份验证捆绑包
2021-05-25 18:50

BrouzieCrossdomainAuthBundle Symfony2的跨域身份验证捆绑包
Nginx + Symfony。除了子文件夹之外的基本身份验证 nginx php symfony
2016-12-14 14:37

回答 1 已采纳 Well, I don't like this solution, but it works. What I've done is to check the request_uri in the
EscapeWSSEAuthenticationBundle：用于实施WSSE身份验证的Symfony捆绑软件
2021-02-06 03:14

EscapeWSSEAuthentication捆绑包是在Symfony应用程序中实现WSSE身份验证的简单方法安装 Command Line composer require escapestudios/wsse-authentication-bundle composer.json " require " : { ... " ...
red-symfony:使用RedBean PHP的Symfony4身份验证尝试（不是Doctrine）
2021-03-21 07:34

red-symfony:使用RedBean PHP的Symfony4身份验证尝试（不是Doctrine）
jwt-auth-bundle：Symfony REST API的JWT身份验证捆绑包
2021-02-06 01:30

jwt-auth-bundle 适用于Symfony的JWT身份验证捆绑包要求 5.5以上 2.8以上 5.0以上对于Symfony <2.8，请参见安装要安装依赖项，请运行以下命令： composer require auth0/jwt-auth-bundle: " ~3.0 " 有关使用...
SymfonyRESTAPI的JWT身份验证
2019-08-07 21:51

此Bundle为您的Symfony API提供JWT（Json Web Token）身份验证
ExtraValidatorBundle:Symfony2 西班牙邮政编码和个人身份验证器
2021-07-03 09:16

Symfony2 的 ExtraValidator 包这个包包含一组有用的验证器和断言以在您的项目中使用。包含的断言/验证器DNI（DNI/NIF 文件）电话（电话号码，按常规表达）手机（手机号码） PrefixedPhone（带有国际前缀的电话...
Crowd-Authentication-Bundle:Symfony2 的 Atlassian Crowd 身份验证包
2021-07-12 17:45

Symfony2 的 Atlassian Crowd 身份验证 这个包允许你将 Atlassian Crowd 身份验证添加到你的 Symfony2 应用程序中，并受到启发。在不久的将来，此捆绑包将增加更多高级功能。安装将此包添加到您的 composer.json ...
没有解决我的问题, 去提问

悬赏问题

¥15 自适应 AR 模型参数估计Matlab程序
¥100 角动量包络面如何用MATLAB绘制
¥15 merge函数占用内存过大
¥15 Revit2020下载问题
¥15 使用EMD去噪处理RML2016数据集时候的原理
¥15 神经网络预测均方误差很小但是图像上看着差别太大
¥15 单片机无法进入HAL_TIM_PWM_PulseFinishedCallback回调函数
¥15 Oracle中如何从clob类型截取特定字符串后面的字符
¥15 想通过pywinauto自动电机应用程序按钮，但是找不到应用程序按钮信息
¥15 如何在炒股软件中，爬到我想看的日k线

码龄粉丝数原力等级 --

无法使Symfony身份验证工作

2条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

无法使Symfony身份验证工作

2条回答 默认 最新

悬赏问题

2条回答默认最新