Symfony 2, return true for bad roles
Question
role_hierarchy:
ROLE_USER: [ROLE_CLIENT, ROLE_CHAT]
ROLE_ADMIN: ROLE_USER
ROLE_SUPER_ADMIN: ROLE_ADMIN
My view returns:
array:2 [▼
0 => Role {#333 ▼
-role: "ROLE_CHAT"
}
1 => Role {#334 ▼
-role: "ROLE_USER"
}
]
You cant't see this.
My view:
{% block content %}
<h1>Client panel</h1>
{{ dump(app.security.token.roles) }}
{% if is_granted('ROLE_CLIENT') %} You can't see this. {% endif %}
{% endblock %}
I don't know why is granted return true for ROLE_CLIENT, if the user has not this role. He has only ROLE_USER, AND ROLE_CHAT.
Thanks for help.
1 answers
solution1
2 2015-04-03 06:00:07
In your Roles' hierarchy you can see that ROLE_USER is already have roles ROLE_CLIENT and ROLE_CHAT . This is the expected behaviour.
If you want it to return false just change your role_hierarchy block in security.yml .
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Symfony 2 security always return Bad Credentials error
Symfony5: isPasswordValid return true only with plain password
Roles assignement in Symfony 2
Sort symfony users by roles
Dynamic roles in symfony
How to check for a role from an array of roles and return true if any of the role exists, for one to many relationship?
Manage Roles and Assign Permissions to Roles - Symfony
Symfony Super Roles have no access to Base Roles
Symfony3 - FOSUserBundle - Roles attribution
Symfony 3 register with roles as CollectionType (FOSUserBundle)
Related Tags