authentication - sfGuardPlugin session: how to reuse it with wget -- or map SID to sfGuardUser -


recently asked add xml api 1 of symfony modules in project. did it, , works well. authentication, use sfguardplugin. symfony version 1.3.11. using propel, not doctrine.

the recent request me this:

  1. we embed flash game website.
  2. the flash requests xml api.
  3. the guy coding flash application says doesn't share cookies browser.
  4. we want flash able reuse session of logged in user (we won't allow shown if no user logged in).

i did try would-be solution: (taken other articles , various google search results)

  1. i told symfony session resides in symfony cookie.
  2. i told if copy value in client (in case, wget) , session_id("stolen_session_id") able duplicate session, have same user logged in, etc.
  3. this turned out wrong. cookie symfony had "blabla" value. did this: wget --post-data='session_id=blabla' x.x.x.x:nn/api/bla.xml -o-. server php code parses post parameter , feeds session_id function. reported in logs session_id('blabla') returning 1. however, calling $this->getuser()->getguarduser() returns null.

i need way map passed session_id valid sfguarduser. or find alternative way of reusing session exists.

suppose have full access cookies. want know 1 of them (or of them?) duplicate in order achieve this.

btw, seeing in chrome dev tools symfony cookie of session type. it's no wonder @ why method doesn't work, little lost how do in symfony, while using sfguardplugin.

i realize not 1 of informed questions, ditto, need help.

thanks time.

(dimitar p.)

oops, forgot mention cookies see on domain:

  • symfony
  • sfremember
  • __utma
  • __utmb
  • __utmc
  • __utmz

i guessing last 4 google analytics, though.

i didn't want this, unable find other alternatives:

$ wget --header='cookie: symfony=blabla' x.x.x.x:nn/api/bla.xml -o-

i wanted xml api rest, evidently, symfony doesn't allow authenticated requests other way using cookies (and enable session id included in url not option at all).

still, if shows rest alternative, upvote his/her answer.


Comments

Post a Comment

Popular posts from this blog

c# - SharpSVN - How to get the previous revision? -

i trying find efficient way previous revision of file text comparison using sharpsvn. using (svnclient c = new svnclient()) { c.authentication.defaultcredentials = new networkcredential( configurationmanager.appsettings.get("svnserviceusername") , configurationmanager.appsettings.get("svnservicepassword") , configurationmanager.appsettings.get("svnservicedomain") ); c.authentication.sslservertrusthandlers += new eventhandler<svnsslservertrusteventargs>(authentication_sslservertrusthandlers); collection<svnfileversioneventargs> fileversioncollection = new collection<svnfileversioneventargs>(); svnrevisionrange range = new svnrevisionrange(0, this.hooks.revision); svnfileversionsargs args = new svnfileversionsargs(); args.retrieveproperties = true; args.range = range; foreach (svnchangeitem item in log.changedpaths) { string path = this.repositorypath + it...
Read more

c++ - Is it possible to compile a VST on linux? -

for class project i'm attempting write vst plugin backed cuda. current cuda workflow on linux box, i'd prefer compile , link there. according wikipedia , should possible (i couldn't find steinberg documentation relevant linux) can't find makefile or instructions on how build if aren't using xcode or visual studio. i'm vst 3 sdk doesn't support linux. when try compile plugin under linux, error: ./base/source/fatomic.cpp:39:30: fatal error: libkern/osatomic.h: no such file or directory this issue caused following code in "vst3 sdk/base/source/fatomic.cpp" #if mac #include <libkern/osatomic.h> #if mac_os_x_version_min_required > mac_os_x_version_10_4 #define native_atomic_type (volatile int32_t*) #else #define native_atomic_type (int32_t*) #endif #elif windows #include <windows.h> #endif but hope compiling under linux work vst sdk 2.4. reading. jvstwrapper seems run on lin...
Read more

url - Querystring manipulation of email Address in PHP -

i using third party application (email2http) send me emailid, body , message. unable retrieve email id due name appended on , enclosed < , >. here querystring getting. test.php?from=ajay+reddy &subject=cx&body=somebody when print variable in php returns name , not email id. $from = $_get['from']; echo $from; //output ajay reddy please suggest me how can emailid also. i dont want use post method due testing , debugging. it's working fine. forgot use htmlentities() in debugging.
Read more