Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
kapai692014-04-26 17:43:01
symfony
kapai69, 2014-04-26 17:43:01

Symfony 2 user authorization

I am using HWIOAuthBundle. When authorizing through VK, the user receives the ROLE_USER role, but in the profile he appears as not authenticated.
511510b38bb441e9bd1d2b69ff54b81e.png
This is a big security hole and how can it be fixed?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexander, 2014-04-29
@morontt

Most likely, the problem is in the serialize and unserialize methods in the user entity. You can’t say more precisely here, because the code is not visible.

Similar questions
N
NubasLol2018-08-16 16:52:44
Symfony callback validation, how to find out about an error in twig? 0Reply
D
Denis2018-08-18 15:04:35
How to organize routing from a database in Symfony 4? 1Reply
E
evilray2014-01-09 03:53:21
How to do dynamic routing in symfony2? 1Reply
M
magary42016-03-30 11:19:12
Where can I get form_token? 1Reply
I
Ivan Antonov2016-04-04 13:02:07
How can annotations check if the user is the owner when going to editAction? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question