doushi1912 2016-05-12 16:17
浏览 80

Symfony和SSO(Apache) - 身份验证

I have an authenticated user on the server via SSO. I can get it in my app with:

$user = $request->server->getHeaders();   
var_dump($user['X_REMOTE_USER']);

I have a SOAP web service to retrieve more informations about the user like his rights on the application.

I wanted to know what is the good way to securized my apps ?

eg: /admin if user got admin role

Must I authentificate my user on symfony ? If yes How can I identify my user on symfony ? (We don't want a Login Form)

I have seen that may be I can use a userProvider.But I don't how it works with a user who is already authentificated by the server.

Thanks for your help, Regards.

  • 写回答

1条回答 默认 最新

  • duanbipu7601 2016-05-13 09:21
    关注

    You can setting roles in security.yml file for ACL Something like:

    # security.yml
 security:
    access_control:
    # require ROLE_ADMIN for /admin*
        - { path: ^/admin, roles: ROLE_ADMIN }

    here is more info. http://symfony.com/doc/current/book/security.html

    But for authentication you need somethink like that: https://stackoverflow.com/a/25984933/3758361, or you can try to use this bundle https://github.com/BeSimple/BeSimpleSsoAuthBundle

    评论

报告相同问题?

悬赏问题

  • ¥15 装 pytorch 的时候出了好多问题,遇到这种情况怎么处理?
  • ¥20 IOS游览器某宝手机网页版自动立即购买JavaScript脚本
  • ¥15 手机接入宽带网线,如何释放宽带全部速度
  • ¥30 关于#r语言#的问题:如何对R语言中mfgarch包中构建的garch-midas模型进行样本内长期波动率预测和样本外长期波动率预测
  • ¥15 ETLCloud 处理json多层级问题
  • ¥15 matlab中使用gurobi时报错
  • ¥15 这个主板怎么能扩出一两个sata口
  • ¥15 不是,这到底错哪儿了😭
  • ¥15 2020长安杯与连接网探
  • ¥15 关于#matlab#的问题:在模糊控制器中选出线路信息,在simulink中根据线路信息生成速度时间目标曲线(初速度为20m/s,15秒后减为0的速度时间图像)我想问线路信息是什么