Skip over navigation

Configure Stateless Security Firewalls

Symfony allows to create stateless firewalls. In this case the security Token will not be serialized to session.

But there are cases when API calls should be used in AJAX requests from the UI.

In this case we does not send firewalls credentials (f.e. WSSE headers) but should use current user token data from the current session.

To be able to do this, the firewall should have context parameter with the context name the system should use to authenticate the user.

For example:

            stateless: true
            context:   main
            # ...
Browse maintained versions:
Back to top

You will be redirected to [title]. Would you like to continue?

Yes No