Hello everyone,
Recently I've created a website which requires users to authenticate
to get in. I've made authentication using sfDoctrineGuardPlugin. I've
also set up caching.
When I open the website for the first time I have to authenticate
myself. But then I close the browser and open again the website, and I
don't get authentication form but the page (let's call it 'page A') I
would see when I was already authenticated. I get page A even if it
has not been in the cache already. I made another page (page B) to
show it after authentication insted of page A and disabled caching of
this page. After that I always get login form first and then page B.
But when I open a new browser and enter website url of page A directly
in the browser's address field I can see page A without
authentication!
When I disable caching of the website, everything works just as I
desire. To see any page on the website I must authenticate first.
I think I missed some configuration option that causes pages to show
without authentication when I use caching.
Can anybody tell me what should I configure to use both authentication
and caching?
Here are some configuration options I have set up:
apps/frontend/config/settings.yml:
cache:
.settings:
cache: true
etag: false
apps/frontend/config/cache.yml:
default:
enabled: false
with_layout: false
lifetime: 86400
app/frontend/modules/moduleWithPageA/config/cache.yml:
#this is for page A
index:
enabled: true
with_layout: false
lifetime: 180
app/frontend/modules/moduleWithPageB/config/cache.yml:
#this is for page B
all:
enabled: false
Best regards,
Michal
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
