Symfony:防火墙,多个登录表单 [英] Symfony: Firewalls, multiple login forms
问题描述
无论如何,我对 symfony 并不陌生,但我一直使用 FOSUserBundle
,默认情况下,它可以防止用户使用 2 个不同的登录表单来验证两种不同的用户类型..
I am not new to symfony by any means, but I've always used FOSUserBundle
which by default prevents one from having 2 different login forms for authenticating two different user types..
我有两个实体,一个是Admins
,另一个是Users
.管理员只能在管理区域登录,同样用户也只能通过前端登录.
I have two entities, one is Admins
and the other is Users
. Admins will only be able to login in the administration area and likewise users will only be able to login via the front end.
我已关注:http://symfony.com/doc/2.1/book/security.html 这也引导我到 http://symfony.com/doc/2.1/cookbook/security/entity_provider.html
I've followed: http://symfony.com/doc/2.1/book/security.html which also lead me to http://symfony.com/doc/2.1/cookbook/security/entity_provider.html
我的 security.yml 是:
My security.yml is:
jms_security_extra:
secure_all_services: false
expressions: true
security:
encoders:
Symfony\Component\Security\Core\User\User: sha512
Fm\AdminBundle\Entity\Admins: sha512
Fm\MainBundle\Entity\Users: sha512
role_hierarchy:
ROLE_ADMIN: ROLE_USER
ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
providers:
chain_provider:
chain:
providers: [in_memory, admin]
in_memory:
memory:
users:
user: { password: userpass, roles: [ 'ROLE_USER' ] }
admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }
admin:
entity: { class: Fm\AdminBundle\Entity\Admins, property: username }
firewalls:
dev:
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false
anonymous: true
alogin:
pattern: ^/admin/login
security: false
login:
pattern: ^/login
security: false
secured_area:
pattern: ^/admin
anonymous: false
provider: chain_provider
switch_user: true
form_login:
check_path: /admin/login_check
login_path: /admin/login
logout:
path: /admin/logout
target: /admin
members_area:
pattern: ^/
anonymous: false
form_login: ~
logout:
path: /logout
target: /
#anonymous: ~
#http_basic:
# realm: "Secured Demo Area"
access_control:
- { path: ^/admin/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/admin/, roles: ROLE_ADMIN }
在我的路由中,我定义了文档中的路由:(默认为/admin/login 和/admin/login_check 因为我的主要路由包括/admin 设置的位置)
In my routes I have defined the routes as in the docs: (defaults to /admin/login and /admin/login_check because of my main routing include where /admin is set)
_admin_login:
pattern: /login
defaults: { _controller: FmAdminBundle:Security:login }
_admin_login_check:
pattern: /login_check
我在浏览器中遇到的错误是:
The error that I am getting in the browser is:
无法找到路径/admin/login_check"的控制器.也许你忘记在路由配置中添加匹配的路由?
堆栈跟踪告诉我:警告 - 无法查找控制器,因为缺少_controller"参数
和
错误 - Symfony\Component\HttpKernel\Exception\NotFoundHttpException:无法找到路径/admin/login_check"的控制器.也许您忘记在路由配置中添加匹配的路由?(未捕获的异常)在/var/www/mysite.dev/symfony/app/bootstrap.php.cache line 1419
推荐答案
在symfony 2XX中实现多登录,试试下面的代码
For implementing multiple login in symfony 2XX, try the following code
security:
encoders:
Symfony\Component\Security\Core\User\User: plaintext
Company\AngularBundle\Entity\User: plaintext
Company\AngularBundle\Entity\Admin: plaintext
role_hierarchy:
ROLE_ADMIN: ROLE_USER
ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
providers:
users:
entity: { class: CompanyAngularBundle:User, property: username }
admin:
entity: { class: CompanyAngularBundle:Admin, property: username }
firewalls:
admin_secured_area:
pattern: ^/admin
anonymous: ~
provider: admin
form_login:
login_path: /admin/login
check_path: /admin/login_check
default_target_path: /admin
user_secured_area:
pattern: ^/
anonymous: ~
provider: users
form_login:
login_path: login
check_path: login_check
default_target_path: /home
routing.yml
login_check:
path: /login_check
admin_login_check:
path: /admin/login_check
树枝文件
Action of login form should be like this
<form action="{{ path('login_check') }}" method="post">
Action of admin/login form should be like this
<form action="{{ path('admin_login_check') }}" method="post">
这篇关于Symfony:防火墙,多个登录表单的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!