I got the same problem.
I have to curl an service passing username and password. It will return me a
cookie corresponding to the user session.
Any thoughts on how to do that?
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You
Hi,
loadUserByUsername() is not used to check the password. The password is
checked once you get the user in memory by comparing the hashes (or
plaintext if no encoder is used).
You will need to implement the web service so you could return the user by
its username, and configure Symfony so