On Tuesday, April 5, 2011 10:04:37 AM UTC+2, Christophe COEVOET wrote: > > Le 05/04/2011 09:53, Christian Schaefer a �crit : > > no as there is no controller to jump to. the SecurityBundle intercepts > > an event and handles it in a listener not a controller. it always > > returns 403 or a RedirectResponse. > No. When the credentials are wrong the request is not blocked by the > form_login listener and go to the controller to display the form again > (or not depending
You seem to talk about the _security_login definition as opposed to the _security_check definition. I've never defined a controller for _security_check and up to this point this has always worked fine bad credentials or not. The _security_login controller works fine but once I hit the submit button (which submits the form to _security_check) things no longer work. Regards, Dennis -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to symfony-users@googlegroups.com To unsubscribe from this group, send email to symfony-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en
