Symfony2: How to restrict / deny access to certain

2019-04-28 14:14发布

I'd like to disallow access to /login and /register if a client's IP address has been banned.

The (black-) list of banned IPs is stored in the database.

How can I solve this?

标签： symfony fosuserbundle access-control

2条回答

虎瘦雄心在

2楼-- · 2019-04-28 14:39

Use controllers events (preferred)

You can subscribe to events on registration controller.

For registration, you can subscribe to REGISTRATION_INITIALIZE event.

Here is the doc for controller events.

Overriding controller methods

The second solution is to override login and register controller methods but you will have to duplicate all code of the login/register action.

0人赞添加讨论(0) 举报

傲

3楼-- · 2019-04-28 14:52

Since symfony 2.4 you can use the Expression Language Component in your config-files.

Now implementing a simple IP check is easy:

create a service (i.e. access_manager) with a method (i.e. getBannedIPs()) that fetches the list of banned IPs from your storage layer
Add an expression to your security configuration that compares the returned array against the client's IP address
That's it.

example

# app/config/security.yml
security:
    # ...
    access_control:
        - path: ^/(login|register)$
          allow_if: "request.getClientIp() not in @=service('access_manager').getBannedIPs()"

0人赞添加讨论(0) 举报

Symfony2: How to restrict / deny access to certain

Use controllers events (preferred)

Overriding controller methods

example

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间