Skip to content

S
Silex
Commit 3fed3e48 authored by Fabien Potencier's avatar Fabien Potencier
Browse files
Options

Merge branch '1.3' 

* 1.3:
  Changed the proposed nginx configuration to mimic Symfony's one
  fixed session logout handler when a firewall is stateless
  Support optional session invalidation on logout
parents 922fdadf e9bd89bb
Show whitespace changes
Inline Side-by-side
Showing with 35 additions and 23 deletions
doc/changelog.rst
View file @ 3fed3e48
......@@ -22,7 +22,7 @@ Changelog
1.3.1 (2015-XX-XX)
------------------
* n/a
* fixed session logout handler when a firewall is stateless
1.3.0 (2015-06-05)
------------------
......
doc/providers/security.rst
View file @ 3fed3e48
......@@ -293,7 +293,7 @@ pattern::
'secured' => array(
'pattern' => '^/admin/',
'form' => array('login_path' => '/login', 'check_path' => '/admin/login_check'),
'logout' => array('logout_path' => '/admin/logout'),
'logout' => array('logout_path' => '/admin/logout', 'invalidate_session' => true),
// ...
),
......
doc/web_servers.rst
View file @ 3fed3e48
......@@ -39,38 +39,45 @@ Alternatively, if you use Apache 2.2.16 or higher, you can use the
nginx
-----
If you are using nginx, configure your vhost to forward non-existent
resources to ``index.php``:
The **minimum configuration** to get your application running under Nginx is:
.. code-block:: nginx
server {
#site root is redirected to the app boot script
location = / {
try_files @site @site;
}
server_name domain.tld www.domain.tld;
root /var/www/project/web;
#all other locations try other files first and go to our front controller if none of them exists
location / {
try_files $uri $uri/ @site;
# try to serve file directly, fallback to front controller
try_files $uri /index.php$is_args$args;
}
#return 404 for all php files as we do have a front controller
location ~ \.php$ {
return 404;
}
location @site {
# If you have 2 front controllers for dev|prod use the following line instead
# location ~ ^/(index|index_dev)\.php(/|$) {
location ~ ^/index\.php(/|$) {
# the ubuntu default
fastcgi_pass unix:/var/run/php5-fpm.sock;
# for running on centos
#fastcgi_pass unix:/var/run/php-fpm/www.sock;
fastcgi_split_path_info ^(.+\.php)(/.*)$;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root/index.php;
#uncomment when running via https
#fastcgi_param HTTPS on;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param HTTPS off;
# Prevents URIs that include the front controller. This will 404:
# http://domain.tld/index.php/some-path
# Enable the internal directive to disable URIs like this
# internal;
}
#return 404 for all php files as we do have a front controller
location ~ \.php$ {
return 404;
}
error_log /var/log/nginx/project_error.log;
access_log /var/log/nginx/project_access.log;
}
IIS
......
src/Silex/Provider/SecurityServiceProvider.php
View file @ 3fed3e48
......@@ -233,6 +233,8 @@ class SecurityServiceProvider implements ServiceProviderInterface, EventListener
throw new \LogicException(sprintf('The "%s" authentication entry is not registered.', $type));
}
$options['stateless'] = $stateless;
list($providerId, $listenerId, $entryPointId, $position) = $app['security.authentication_listener.factory.'.$type]($name, $options);
if (null !== $entryPointId) {
......@@ -504,7 +506,10 @@ class SecurityServiceProvider implements ServiceProviderInterface, EventListener
isset($options['with_csrf']) && $options['with_csrf'] && isset($app['form.csrf_provider']) ? $app['form.csrf_provider'] : null
);
$invalidateSession = isset($options['invalidate_session']) ? $options['invalidate_session'] : true;
if (true === $invalidateSession && false === $options['stateless']) {
$listener->addHandler(new SessionLogoutHandler());
}
return $listener;
};
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment