Skip over navigation
Documentation
You are currently viewing documentation for a previously released version of OroCommerce. See the latest long-term support version.

Configure Stateless Security Firewalls

Symfony allows to create stateless firewalls. In this case the security Token will not be serialized to session.

But there are cases when API calls should be used in AJAX requests from the UI.

In this case we does not send firewalls credentials (f.e. WSSE headers) but should use current user token data from the current session.

To be able to do this, the firewall should have context parameter with the context name the system should use to authenticate the user.

For example:

security:
    firewalls:
        some_stateless_firewall_with_AJAX_requests:
            stateless: true
            context:   main
            # ...
ForumsForums
Back to top