Documentation Home »Developer Guide »Web Services API »API Documentation »Configure Stateless Security Firewalls

Configure Stateless Security Firewalls

Symfony allows to create stateless firewalls. In this case the security Token will not be serialized to session.

But there are cases when API calls should be used in AJAX requests from the UI.

In this case we does not send firewalls credentials (f.e. WSSE headers) but should use current user token data from the current session.

To be able to do this, the firewall should have context parameter with the context name the system should use to authenticate the user.

For example:

security:
    firewalls:
        some_stateless_firewall_with_AJAX_requests:
            stateless: true
            context:   main
            # ...
Browse maintained versions:
3.01.122.02.32.6

You will be redirected to [title]. Would you like to continue?

Yes No
sso for www.magecore.comsso for oroinc.desso for oroinc.frsso for marketplace.orocommerce.comsso for marketplace.orocrm.com