2019-04-01 10:12
浏览 66

Symfony - 我不能用树枝定制我的表格

I would like to create a login form in twig (login + password) and which is customized. The form should search the Users table and the LDAP directory if the information entered exists.

Moreover, when I validate the form, I do not want the login and the password to be found in the URL.

At validation, if the user exists, he is redirected to a page, otherwise he will remain on the login page.

I managed to make a form, customized but that returns the login and password in the URL.

It looks like this:

enter image description here

And this is the code in twig :

{% extends 'base.html.twig' %}
{% block stylesheets %}
<link href="//maxcdn.bootstrapcdn.com/bootstrap/3.3.0/css/bootstrap.min.css" rel="stylesheet" id="bootstrap-css">
<script src="//maxcdn.bootstrapcdn.com/bootstrap/3.3.0/js/bootstrap.min.js"></script>
<script src="//code.jquery.com/jquery-1.11.1.min.js"></script>rel="stylesheet"> 

{% endblock %}
{% block body %}

<form class="navbar-form navbar-center">
    <div class="input-group">
        <span class="input-group-addon"><i class="glyphicon glyphicon-user"></i></span>
        <input id="text" type="text" class="form-control" name="login" value="" placeholder="Login">                                        
    <div class="input-group">
        <span class="input-group-addon"><i class="glyphicon glyphicon-lock"></i></span>
        <input id="password" type="password" class="form-control" name="password" value="" placeholder="Mot de passe">                                        
    <button type="submit" class="btn btn-primary">Valider</button>
    Pas de compte académique ? <a href="{{path('paquets_index')}}">Demande de création de compte</a>

{% endblock %}

Now my goal is to make sure that there is no login and password that are found in the URL to validation. It will just be a check and in function, it will show yes or no the next page. And I can not do it.

Moreover, from a functional point of view, is it useful to go through a formType builder from my Users entity? Or can I just be content with this kind of form, which would send back to the controller the information entered, to do the verification?

When in doubt, here is my form builder


namespace Site\PagesBundle\Form;

use Symfony\Component\Form\AbstractType;
use Symfony\Component\Form\FormBuilderInterface;
use Symfony\Component\OptionsResolver\OptionsResolver;
use Symfony\Component\Form\Extension\Core\Type\PasswordType;
use Symfony\Component\Form\Extension\Core\Type\TextType;

class ConnexionType extends AbstractType
     * {@inheritdoc}
    public function buildForm(FormBuilderInterface $builder, array $options)
        ->add('identifiant', TextType::class)
        ->add('password', PasswordType::class,array(
            'attr' => array(
                'placeholder'=> 'Mot de passe',
                'label' =>'Mot de passe',
     * {@inheritdoc}
    public function configureOptions(OptionsResolver $resolver)
            'data_class' => 'Site\PagesBundle\Entity\User'

     * {@inheritdoc}
    public function getBlockPrefix()
        return 'site_pagesbundle_user';


Thanks for your help !

  • 点赞
  • 写回答
  • 关注问题
  • 收藏
  • 邀请回答

2条回答 默认 最新

  • doudu9652
    doudu9652 2019-04-01 11:11

    I'm not quite sure, how bend on reinventing the wheel you are. But symfony has a lot of stuff prepared, since this is not that uncommon of a use case.

    I like the 3.4 tutorial on building a login: https://symfony.com/doc/3.4/security/form_login_setup.html

    (at the side, there is the possibility to switch to 4.3 or whatever, however, the 3.4 tutorial should still work, even in 4.x)

    you don't particularly need your own FormType to do the login, since the Security components already handle form submissions. Also have a look at csrf protection ;o)

    点赞 评论
  • douhuiyan2772
    douhuiyan2772 2019-04-01 10:51

    Currently you are not using your form generated by ConnexionType if you want to use it in your Twig file you can display it like that {{form(form) }} if you send it through your controller.

    You have all the necessary information here

    Then to not pass the login and password in the url use the POST method

    Otherwise I recommend the security bundle Bundle Security to get a secure form

    I hope I helped you.

    点赞 评论