【发布时间】:2015-12-09 08:19:31
【问题描述】:
我正在使用多个提供者创建安全性。一个提供者用于奏鸣曲管理员,另一个提供者用于自定义前端用户
security:
encoders:
FOS\UserBundle\Model\UserInterface: bcrypt
providers:
fos_userbundle:
id: fos_user.user_manager
database_users:
entity: { class: MyBundle:Users, property: username }
firewalls:
dev:
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false
admin:
pattern: /admin(.*)
context: user
form_login:
provider: fos_userbundle
login_path: /admin/login
use_forward: false
check_path: /admin/login_check
failure_path: null
logout:
path: /admin/logout
anonymous: true
main:
pattern: .*
form-login:
provider: fos_userbundle
login_path: /login
use_forward: false
check_path: /login_check
failure_path: null
logout: true
anonymous: true
secured_area://created for custom frontend user
pattern: ^/
anonymous: true
form_login:
provider: database_users
check_path: /security/login_check
login_path: /security/login
#csrf_provider: security.csrf.token_manager
default_target_path: voters_list
always_use_default_target_path: true
logout:
path: logout
target: homepage
access_control:
# The WDT has to be allowed to anonymous users to avoid requiring the login with the AJAX request
- { path: ^/wdt/, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/profiler/, role: IS_AUTHENTICATED_ANONYMOUSLY }
# AsseticBundle paths used when using the controller for assets
- { path: ^/js/, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/css/, role: IS_AUTHENTICATED_ANONYMOUSLY }
# URL of FOSUserBundle which need to be available to anonymous users
- { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/login_check$, role: IS_AUTHENTICATED_ANONYMOUSLY } # for the case of a failed login
- { path: ^/user/new$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/check-confirmation-email$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/confirm/, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/confirmed$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/request-reset-password$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/send-resetting-email$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/check-resetting-email$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/user/reset-password/, role: IS_AUTHENTICATED_ANONYMOUSLY }
# Admin login page needs to be accessed without credential
- { path: ^/admin/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/admin/logout$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/admin/login_check$, role: IS_AUTHENTICATED_ANONYMOUSLY }
# Secured part of the site
# This config requires being logged for the whole site and having the admin role for the admin part.
# Change these rules to adapt them to your needs
- { path: ^/admin/, role: ROLE_ADMIN }
- { path: ^/.*, role: IS_AUTHENTICATED_ANONYMOUSLY }
role_hierarchy:
ROLE_ADMIN: [ROLE_USER, ROLE_SONATA_ADMIN]
ROLE_SUPER_ADMIN: [ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
SONATA:
#- ROLE_SONATA_PAGE_ADMIN_PAGE_EDIT # if you are using acl then this line must be commented
acl:
connection: default
我对 FOSUserBundle 提供的奏鸣曲管理员没有问题,但是自定义前端用户抛出错误
在渲染模板期间抛出异常(“无法为命名路由“security/login_check”生成 URL,因为这样的路由不存在
在我的 app/routing.yml 中,我导入了为自定义前端用户创建的路由
Custom_security:
resource: "@MyBundleBundle/Resources/config/routing/security.yml"
prefix: /security
在 MyBundle 路由内部
login_check:
path: /login_check
#defaults: { _controller: MyBundle:Security:loginCheck }
logout:
path: /logout
login_user:
path: /login
defaults: { _controller: MyBundle:Security:login }
我很困惑为什么 Symfony 会抛出异常错误,我在 config/routing.yml 中导入了 MyBundle 路由 我的登录表单是这样的
<form action="{{ path('security/login_check') }}" name="form" id="form" class="form-horizontal" enctype="multipart/form-data" method="POST">
<div class="input-group">
<span class="input-group-addon"><i class="fa fa-user"></i></span>
<input type="text" id="username" name="_username" value="{{ last_username }}" class="form-control" placeholder="username" required autofocus/>
</div>
<div class="input-group">
<span class="input-group-addon"><i class="fa fa-lock"></i></span>
<input type="password" id="password" name="_password" class="form-control" placeholder="Password" required/>
</div>
<div class="form-group">
<!-- Button -->
<div class="col-sm-12 controls">
<button type="submit" href="#" class="btn btn-primary pull-right"><i class="fa fa-log-in"></i> Log in</button>
</div>
</form>
更新
我把表格改成
<form action="{{ path('login_check') }}" name="form" id="form" class="form-horizontal" enctype="multipart/form-data" method="POST">
<div class="input-group">
<span class="input-group-addon"><i class="fa fa-user"></i></span>
<input type="text" id="username" name="_username" value="{{ last_username }}" class="form-control" placeholder="username" required autofocus/>
</div>
<div class="input-group">
<span class="input-group-addon"><i class="fa fa-lock"></i></span>
<input type="password" id="password" name="_password" class="form-control" placeholder="Password" required/>
</div>
<div class="form-group">
<!-- Button -->
<div class="col-sm-12 controls">
<button type="submit" href="#" class="btn btn-primary pull-right"><i class="fa fa-log-in"></i> Log in</button>
</div>
</form>
还有MyBundle里面的路由
login_check:
path: /login_check
defaults: { _controller: MyBundle:Security:loginCheck }
logout:
path: /logout
login_user:
path: /login
defaults: { _controller: MyBundle:Security:login }
并在 MyBundle 中创建了一个测试方法
public function loginCheckAction()
{
throw new \Exception('This should never be reached!);
}
还有错误
这绝对不能达到!
尝试删除 login_check 的默认控制器
login_check:
path: /login_check
#defaults: { _controller: DuterteBundle:Security:loginCheck } //removed
抛出错误
找不到路径“/security/login_check”的控制器。路由配置错误。
【问题讨论】:
标签: symfony