{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 神经病院院长 的问题《Symfony2 security @Secure annotation not working》','https://www.manongdao.com/q-817194.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm attempting to use annotations to secure my controllers:
namespace Vinny\StreamBundle\Controller;
use Symfony\Bundle\FrameworkBundle\Controller\Controller;
use JMS\SecurityExtraBundle\Annotation\Secure;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route;
class HomeController extends Controller
{
/**
* @Route("/home", name="home")
* @Secure(roles="ROLE_USER")
*/
public function indexAction()
{
...
But I can't seem to get my controllers to actually be secured. Is there any instances on which this would be ignored?
On an almost completely unrelated note, the issue of my problem didn't stem from anything in my configuration or controller, but was an migration mixup from the switch from Symfony 2.0 to Symfony 2.1. I was failing to register the JMSDiExtraBundle which was silently crippling the JMSSecurityExtraBundle's (and others') annotations.
In my AppKernel.php, I had been missing:
With that everything works fine, again.
You need to try with
ROLE_ADMINorROLE_SUPERand then see if its secured or not.ROLE_USERis the deafult role applied to all users , so u are allowed