duanquezhan7268 2014-09-23 10:09
浏览 46
已采纳

如何在symfony中的匿名会话中查看经过身份验证的用户

I have a little problem in project with symfony.

I am developing a article website in which normal visitor can see all the article without login and admin can login and add or remove article but admin can remove the comments that are marked as spam in article page after login.The problem is that i have allowed anonymous in article section (main controller) and if i login in admin section still session shows me anonymous user in main controller.? why?

 firewalls:
    admin_login:
        pattern:  ^/admin/login$
        security: false
    main_area:(article area)
        pattern: ^/main
        anonymous: ~

    adminrestricted_area:
        pattern: ^/
        form_login:
            csrf_provider: form.csrf_provider
            login_path: _admin_login
            check_path: _admin_login_check
        logout:
            path:   _admin_logout
            target: _admin_login

only page having /admin in url shows me the current logged in user but i want to access that user in /main but in session it shows me enter image description here

Am i missing something?

I want that if login it should show me the logged in user and if i don't this page should normally be accessed without login?

  • 写回答

1条回答 默认 最新

  • drgovyk64676 2014-09-23 11:41
    关注

    In Symfony, you may define many area in the security.yml configuration. But each area is separated. You may be authenticated in one area but not in the other.

    In your case, your user is authenticated in the admin_login area, but not in the main_area, so Symfony's consider that you are an anonymous user.

    If you need that your admin can be connected in the "public area", so you need to define a single area, and use the access_control. Something like this :

    firewalls:
        main:
            pattern: ^/
            form_login:
                csrf_provider: form.csrf_provider
                login_path: _admin_login
                check_path: _admin_login_check
            logout:
                path:   _admin_logout
                target: _admin_login
            anonymous: ~
    
    access_control:
        - { path: ^/admin/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/admin/, role: ROLE_ADMIN }
        - { path: ^/, role: IS_AUTHENTICATED_ANONYMOUSLY }
    
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 能给我一些人生建议吗
  • ¥15 mac电脑,安装charles后无法正常抓包
  • ¥18 visio打开文件一直显示文件未找到
  • ¥15 请教一下,openwrt如何让同一usb储存设备拔插后设备符号不变?
  • ¥30 使用quartz框架进行分布式任务定时调度,启动了两个实例,但是只有一个实例参与调度,另外一个实例没有参与调度,不知道是为什么?请各位帮助看一下原因!!
  • ¥50 怎么获取Ace Editor中的python代码后怎么调用Skulpt执行代码
  • ¥30 fpga基于dds生成幅值相位频率和波形可调的容易信号发生器。
  • ¥15 R语言shiny包和ncdf4包报错
  • ¥15 origin绘制有显著差异的柱状图和聚类热图
  • ¥20 simulink实现滑模控制和pid控制对比,提现前者优势