I have a Symfony application with 2 areas, one for clients accessing from a web page an other for API calls from AJAX and web services.
Each one of this areas is protected with a firewall on its own. The WEB interface is authenticated with a log in form and the API with http_basic
.
Both firewalls work fine, but when the WEB interface makes an AJAX call to the API interface, then the browser prompts the user to log in again, even when he was already logged in (via log in form). This is what I want to avoid. I Would like that both firewalls were authenticated at the same time to prevent this prompt.
I've seen another question with exactly the same problem. But they are using http_basic
authentication on both firewalls, so, the solution proposed did't work on my case:
Authenticate multiple symfony2 firewalls with one login form
My security.yml
#....
firewalls:
api:
pattern: ^/API
context: primary_auth
stateless: true
http_basic:
realm: "API: Please log in"
web:
pattern: ^/
context: primary_auth
form_login:
check_path: /login_check
login_path: /login
provider: fos_userbundle
logout:
path: /logout
target: /
anonymous: ~
You might want to look here: Authenticate multiple symfony2 firewalls with one login form there's solution to similar problem there
quoted:
security:
# providers etc ...
firewall:
main:
pattern: # ...
provider: my_users
http_basic: ~
context: primary_auth # new
api:
pattern: # ...
provider: my_users
http_basic: ~
context: primary_auth # new
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With