sergeyfedotov/1_README.md

## 1_README.md

      
    Raw
  

              1_README.md
            
          
    [Symfony][Security] Logout in stateless firewall

Temporary fix for the issue symfony/symfony#7104 in case of stateless firewall

  
## 2_security.yml
security:
    firewalls:
        main:
            stateless: true
            anonymous: ~
            form_login:
                login_path: login
                check_path: login
            remember_me:
                secret: "%kernel.secret%"
                lifetime: 2592000
                always_remember_me: true
# ...

## 3_LogoutAction.php
<?php

namespace AppBundle\Action\Security;

use AppBundle\Http\ResponseFactory;
use Symfony\Component\Routing\Annotation\Route;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Symfony\Component\Security\Http\RememberMe\AbstractRememberMeServices;

class LogoutAction
{
    private $tokenStorage;

    private $rememberMeServices;

    private $responseFactory;

    public function __construct(
        TokenStorageInterface $tokenStorage,
        AbstractRememberMeServices $rememberMeServices,
        ResponseFactory $responseFactory
    )
    {
        $this->tokenStorage = $tokenStorage;
        $this->rememberMeServices = $rememberMeServices;
        $this->responseFactory = $responseFactory;
    }

    /**
     * @Route("/logout", name="logout")
     */
    public function __invoke(Request $request)
    {
        $response = $this->responseFactory->redirectToRoute('index');

        if (null !== $token = $this->tokenStorage->getToken()) {
            $this->rememberMeServices->logout($request, $response, $token);
        }

        return $response;
    }
}
	security:
	firewalls:
	main:
	stateless: true
	anonymous: ~
	form_login:
	login_path: login
	check_path: login
	remember_me:
	secret: "%kernel.secret%"
	lifetime: 2592000
	always_remember_me: true
	# ...
	<?php

	namespace AppBundle\Action\Security;

	use AppBundle\Http\ResponseFactory;
	use Symfony\Component\Routing\Annotation\Route;
	use Symfony\Component\HttpFoundation\Request;
	use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
	use Symfony\Component\Security\Http\RememberMe\AbstractRememberMeServices;

	class LogoutAction
	{
	private $tokenStorage;

	private $rememberMeServices;

	private $responseFactory;

	public function __construct(
	TokenStorageInterface $tokenStorage,
	AbstractRememberMeServices $rememberMeServices,
	ResponseFactory $responseFactory
	)
	{
	$this->tokenStorage = $tokenStorage;
	$this->rememberMeServices = $rememberMeServices;
	$this->responseFactory = $responseFactory;
	}

	/**
	* @Route("/logout", name="logout")
	*/
	public function __invoke(Request $request)
	{
	$response = $this->responseFactory->redirectToRoute('index');

	if (null !== $token = $this->tokenStorage->getToken()) {
	$this->rememberMeServices->logout($request, $response, $token);
	}

	return $response;
	}
	}