堆栈内存溢出
  简体   繁体   English

注销时,Symfony 2不会删除remember-me cookie

[英]Symfony 2 does not delete remember-me cookie when logout

 原文  2015-11-15 17:28:17       php/ symfony/ cookies

问题描述

My goal is to do programmatically logout from controller. 我的目标是以编程方式从控制器注销。 I use this nice solution . 我用这个很好的解决方案 Everything works fine except that LONGSESS (renamed REMEMBERME ) cookie not deleted. 除了没有删除LONGSESS (重命名为REMEMBERME )cookie之外,一切正常。 It deleted but not :) 它已删除但不是:)

Logout in controller code: 注销控制器代码: 

$response = $this->redirectToRoute('homepage');
$response->headers->clearCookie('LONGSESS');
return $response;

So, call this action. 所以,请调用此操作。

  1. Request headers for this action (as expected): 请求此操作的标头(按预期方式): 

     Cookie SESS=n4jbl1m61l6bceesbeusrbq044; LONGSESS=QXBwQnVuZGxlXEVudGl0eVxVc2VyOmRYTmxja0IxYzJWeUxtTnZiUT09OjE0NDgyMDMyMjQ6ZTFhNzBlNGEyMWM4NGM3N2UzYmI3ZmJiNWIzMGM5MDg2ZDAyOWY1ZGVhMWI4NTYyNGQ0OTJmNjVmNmRjOTY2NQ%3D%3D

  2. Response headers to this action (as expected): 此操作的响应标头(按预期方式): 

     Set-Cookie:SESS=ai1gt79r49o184du3tknv7tdf6; path=/; domain=.myhost.local Set-Cookie:LONGSESS=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; httponly Set-Cookie:SESS=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; httponly

  3. Redirect headers (as expected): 重定向标头(按预期方式): 

     Location:/app_dev.php/

  4. Next request headers to homepage (NOT as expected - LONGSESS value is the same as previous request): 主页的下一个请求标头(不是预期的 - LONGSESS值与先前的请求相同): 

     Cookie:LONGSESS=QXBwQnVuZGxlXEVudGl0eVxVc2VyOmRYTmxja0IxYzJWeUxtTnZiUT09OjE0NDgyMDMyMjQ6ZTFhNzBlNGEyMWM4NGM3N2UzYmI3ZmJiNWIzMGM5MDg2ZDAyOWY1ZGVhMWI4NTYyNGQ0OTJmNjVmNmRjOTY2NQ%3D%3D; SESS=ai1gt79r49o184du3tknv7tdf6

So user is not logged out. 所以用户没有注销。

How may it be? 怎么可能? LONGSESS cookie set to deleted , expired but next request has the same value? LONGSESS cookie设置为deleted ,已过期,但下一个请求具有相同的值?

2 个解决方案

解决方案1
 1  2015-11-15 18:46:37

The solution is to set third argument domain in clearCookie method call. 解决方案是在clearCookie方法调用中设置第三个参数domain It have to be equals to domain in session settings: 它必须等于会话设置中的域: 

framework:
    session:
        cookie_domain: YOUR-DOMAIN.COM

and 

firewalls:
    your_firewall:
            remember_me:
                domain: YOUR-DOMAIN.COM

So, the right way: 所以,正确的方法: 

$response->headers->clearCookie('LONGSESS', '/', 'YOUR-DOMAIN.COM');

解决方案2
 -1  2016-05-29 08:19:45

Have you tried: 你有没有尝试过: 

$response->sendHeaders();

right after: 紧接着: 

$response->headers->clearCookie('LONGSESS');

?

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 symfony 注销时删除记住我的cookie - symfony Delete remember me cookie when logging out Symfony 3未设置记住我的cookie - Symfony 3 does not set remember me cookie Symfony 4 记住我 cookie 未设置 - Symfony 4 remember me cookie not set Symfony4 没有根据记住我的 cookie 找到用户 - Symfony4 does not find user according to remember me cookie Symfony2:记住我 cookie 在重新打开浏览器时被删除 - Symfony2 : remember me cookie gets deleted when reopening the browser Laravel Auth::logout 不删除记住我的 cookie - Laravel Auth::logout not removing remember me cookie 记住我系统的基础知识 - Basics of a remember-me system Symfony Voter:访问被拒绝,用户既不是匿名的,也不记得我 - Symfony Voter : Access denied, the user is neither anonymous, nor remember-me 注册后自动记住我 - Auto remember-me after register Symfony 4记住我不起作用,浏览器重启时会破坏cookie - Symfony 4 Remember Me doesn't work, the cookie is destroyed when browser reboot
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM