Mohebifar
Reputation: 3411
Update roles in security.context without need to logging in again
I use FOSUserBundle in my project. I have a Controller AcmeArticleBundle:Edit which has a route prefix /editor. And in my security.yml I added an access control.
access_control:
- { path: ^/editor/, role: ROLE_EDITOR }
Now I add ROLE_EDITOR to a user in a controller. But user cannot access AcmeArticleBundle:Edit and security context does not change until logging out and logging in again.
Upvotes: 3
Views: 1133
Answers (2)
Mohebifar
Reputation: 3411
Finally I found the solution. I had to make a new security token and set it as security context.
$user = $this->getUser();
$user->addRole('ROLE_ADMIN');
$this->get('fos_user.user_manager')->updateUser($user);
$token = new UsernamePasswordToken($user, null, 'main', $user->getRoles());
$this->get('security.context')->setToken($token);
Upvotes: 0
COil
Reputation: 7606
You can update the roles manually:
// YourController.php
$roles = $this->getToken()->getUser()->getRoles();
$roles[] = 'ROLE_NEW';
$this->getToken()->getUser()->setRoles($roles);
// Then persist your user entity or the new role will be lost at the next page call
(Code for Symfony2.0 but it should not be very different in 2.4)
Upvotes: 2
Related Questions
- Dynamically set roles on authentication
- Reload user role after change without re-logging
- Edit user role from an admin panel (Symfony2 and FOSUserBundle)
- Set ROLE_USER after registration in Symfony with FOSUserBundle
- How to force the re-login to all users when roles are changed using Symfony2 and FOSUserBundle?
- Force reauthentication after user permissions have been changed
- Switch roles FOSUserBundle
- Symfony 2.1.7 - Update security token setting specific roles after the user is authenticated
- how to add user roles dynamically upon login with symfony2 (and fosUserBundle)?
- Symfony2 Security System(access_control and security.context) With Database Stored Roles and FOSUserBundle