You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have implemented this bundle but I'm getting a 401 - invalid credential error when I submit the refresh token.
I log in and get a token as well as a refresh token at the same time.
Directly after that I'm trying to POST with the refresh token to www.mywebsite.com/api/token/refresh.
when@test:
security:
password_hashers:
# By default, password hashers are resource intensive and take time. This is
# important to generate secure password hashes. In tests however, secure hashes
# are not important, waste resources and increase test times. The following
# reduces the work factor to the lowest possible values.
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
algorithm: auto
cost: 4 # Lowest possible value for bcrypt
time_cost: 3 # Lowest possible value for argon
memory_cost: 10 # Lowest possible value for argon
`
Does anybody has an idea why I'm getting that response ?
By the way the route to invalidate works perfectly.
The text was updated successfully, but these errors were encountered:
I found the solution. Since my provider entity property is username and not email, I had to change the getUserIdentifier function in User.
Hope this might help !
I have implemented this bundle but I'm getting a 401 - invalid credential error when I submit the refresh token.
I log in and get a token as well as a refresh token at the same time.
Directly after that I'm trying to POST with the refresh token to www.mywebsite.com/api/token/refresh.
Here is my security.yaml file :
`security:
enable_authenticator_manager: true
# https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
password_hashers:
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
App\Entity\User:
algorithm: auto
- { path: ^/api/users, roles: IS_AUTHENTICATED_FULLY }
when@test:
security:
password_hashers:
# By default, password hashers are resource intensive and take time. This is
# important to generate secure password hashes. In tests however, secure hashes
# are not important, waste resources and increase test times. The following
# reduces the work factor to the lowest possible values.
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
algorithm: auto
cost: 4 # Lowest possible value for bcrypt
time_cost: 3 # Lowest possible value for argon
memory_cost: 10 # Lowest possible value for argon
`
Does anybody has an idea why I'm getting that response ?
By the way the route to invalidate works perfectly.
The text was updated successfully, but these errors were encountered: