Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
kapai692014-04-26 17:43:01
symfony
kapai69, 2014-04-26 17:43:01

Symfony 2 user authorization

I am using HWIOAuthBundle. When authorizing through VK, the user receives the ROLE_USER role, but in the profile he appears as not authenticated.
511510b38bb441e9bd1d2b69ff54b81e.png
This is a big security hole and how can it be fixed?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexander, 2014-04-29
@morontt

Most likely, the problem is in the serialize and unserialize methods in the user entity. You can’t say more precisely here, because the code is not visible.

Similar questions
A
Alexander2016-12-08 22:02:09
How to find a mentor to improve Symfony? 1Reply
K
kapai692014-12-11 22:20:01
Symfony how is remember me token generated? 2Reply
T
tukreb2021-01-15 01:02:02
Audit log (History of actions), the best option? 1Reply
M
Messi2019-05-17 14:41:58
Data validation in Symfony 3? 1Reply
A
Anton2014-12-24 19:09:43
Should I replace Assetic with bower + grunt in Symfony2, or combine them? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question