FOSUserBundle and remember me

Question

I'm using a FOSUserBundle for authentication in Symfony2. Everything works fine except "remember me". My security.yml looks like this:

security:
providers:
    fos_userbundle:
        id: fos_user.user_manager

encoders:
    'FOS\UserBundle\Model\UserInterface': sha512

firewalls:
    main:
        pattern: ^/
        form_login:
            provider: fos_userbundle
        logout:       true
        anonymous:    true
        remember_me:
            key:      aSecretKey
            lifetime: 3600
            path:     /
            domain:   ~

access_control:
    - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/admin, role: ROLE_ADMIN }

role_hierarchy:
    ROLE_ADMIN:       ROLE_USER
    ROLE_SUPER_ADMIN: ROLE_ADMIN

Does anybody know how to solve this.

Adrian C. · Answer 1 · 2018-03-15T09:16:39.080

11

This was not working for me neither because i used 2 user providers: FOSUserBundle and FosFacebook.

The cookie was actually being set, but in TokenBasedRememberMeServices, processAutoLoginCookie i saw that the wrong provider was being used.

To fix it i had to specify in security.yml in remember_me section the provider i wanted to use.

firewalls:
    main:
        ...
        remember_me:
            secret:      "%secret%"
            lifetime: 2592000
            path:     /
            domain:   ~
            user_provider: fos_userbundle

Maybe this helps somebody else too.

Update: I've modified the response since in newer versions of Symfony, the "key" under remember_me is now called "secret".

edited Mar 15 '18 at 09:16

answered Feb 27 '15 at 09:46

Adrian C.

742
6
14

2

Omg best answer ever !! Saved me tons of debugging <3 – Clément Prévost Mar 23 '16 at 16:49
1

This should be the winner answer! – Sergiu Mar 25 '16 at 08:12

score 5 · Answer 2 · answered Mar 25 '16 at 23:20

5

As "Adrian C" said, but with a little change which worked for me.

instead "key" i used "secret"

 firewalls:
     main:
         ...
         remember_me:
             secret:      "%secret%"
             lifetime: 2592000
             path:     /
             domain:   ~
             user_provider: fos_userbundle

answered Mar 25 '16 at 23:20

Shay Altman

2,720
1
16
20

This should have been a comment... (or an update to the referred answer) – stollr Jul 15 '19 at 15:20

score 2 · Answer 3 · answered Dec 28 '11 at 10:18

2

Remember me feature may not work if browser can't set cookies on your domain (localhost, for example). If this is a case, then setup your domain as a valid domain name (eg, dev.site.com). Also make sure you have cleared cache.

answered Dec 28 '11 at 10:18

Anton Babenko

6,586
2
36
44

1

Thanks for answer. I tried these possibilities, but then I figure out that problem is with logout:true in security.yml. I delete these line and then everything works fine. – repincln Dec 28 '11 at 19:17

score 0 · Answer 4 · answered Jan 15 '12 at 12:56

0

It's working for me with session lifetime in add of security remenber_me configuration:

  framework:
    session:
        default_locale: %locale%
        auto_start:     true
        lifetime:       3600

answered Jan 15 '12 at 12:56

bux

7,087
11
45
86

1

Where should this section be added? security.yml, under ... what? – Paolo Stefan Sep 03 '14 at 08:45

FOSUserBundle and remember me

4 Answers4

Linked