reactjs - Sharing session between React front-end server and PHP/Symfony back-end server -


i have application consists of front-end server running react , back-end server running php/symfony. part of front-end developed using twig templates (mostly backoffice forms updating content) , handled same back-end server, , part of developed using react , resides in separated front-end server (for public user access, more functionality).

the system has 3 user roles: superadmin (authenticated through form against in-memory user configured in symfony), backoffice employee (authenticated through same form against user entity in database) , "public user" sort of speak, uses public side of application, authenticated through third party service which, in end, requires start session inside 1 of our apis code similar this:

        $token = new usernamepasswordtoken($publicuserentity, null, 'main', $publicuserentity->getroles());     $this->get('security.token_storage')->settoken($token);     $this->get('session')->set('_security_main', serialize($token));

users authenticated in 3 ways, session open if in backend server , not if make request frontend server.

for example, after login public user, if make request to:

http://backendserverhost/api/someentity/me

that api loads current session's user id user's data, , proper response according authenticated user.

but if make same request frontend server (to same api, , same endpoint) in order same information , show it, returns error if anonymous user.

what changes should able "use" opened session in backend server make frontend server requests?

you can generate token user , pass argument @ each request.

using fosoauthrestbundle can define accesstoken in user model class , use authenticate @ each request.

they have pretty tutorial here: https://github.com/friendsofsymfony/fosoauthserverbundle/blob/master/resources/doc/index.md


Comments

Post a Comment

Popular posts from this blog

What is happening when Matlab is starting a "parallel pool"? -

running parallel cpu processes in matlab starts command parpool() according documentation , function: [creates] special job on pool of workers, , [connects] matlab client parallel pool. this function takes bit of time execute, on order of 30 seconds. in other multi-cpu paradigms openmp, parallel execution seems totally transparent -- i've never noticed behavior analogous matlab (granted i'm not experienced parallel programming). so, happening between time parpool() called , when finishes executing? takes long? parallel computing toolbox enables run matlab code in parallel using several different paradigms (e.g. jobs , tasks, parfor , spmd , parfeval , batch processing), , run either locally (parallelised across cores in local machine) or remotely (parallelised across machines in cluster - either 1 own, or 1 in cloud). in of these cases, code run on matlab workers , copies of matlab without interactive desktop. if you're intending run on remo...
Read more

angular - DownloadURL return null in below code -

when change file updated in firebase storage when try downloadurl show null. filechange(event: any) { const imagefolder: string = this.employee.id; const filelist: filelist = event.target.files; const file: file = filelist[0]; const storageref = firebase.storage().ref().child(`${imagefolder}/profile.jpg`).put(file); console.log(storageref.snapshot.downloadurl); } the put() asynchronous. if want url after file uploaded have this: firebase.storage().ref().child(`${imagefolder}/profile.jpg`).put(file).then((snapshot) => { storageref = snapshot.downloadurl: console.log(snapshot.downloadurl); });
Read more

php - Cannot override Laravel Spark authentication with own implementation -

during login process of laravel spark need request token of remote api. api stores exact same users , passwords laravel spark application. therefore need username , non hashed password of user during authentication process. i thought overriding authenticated method solution problem. in routes/web.php override post /login endpoint , pointing endpoint own logincontroller: <?php namespace app\http\controllers\auth; use illuminate\support\facades\log; use illuminate\http\request; use laravel\spark\http\controllers\auth\logincontroller sparklogincontroller; class logincontroller extends sparklogincontroller { /** * create new login controller instance. * * @return void */ public function __construct() { parent::__construct(); } /** * handle successful authentication attempt. * * @param request $request * @param \illuminate\contracts\auth\authenticatable $user * @return response */ public fu...
Read more