Unauthorized when I use entity provider about lexikjwtauthenticationbundle HOT 4 CLOSED

Hi,

First, thanks ! About your problem, the cause might not be the use of an entity provider but the property email. As you can see here https://github.com/lexik/LexikJWTAuthenticationBundle/blob/master/Services/JWTManager.php#L102 the bundle stores the username of the user inside the token. So when the entity provider tries to load the user form your database it actually compares its username to its email.

To change this behavior, you could override the JWTManager to change the property used to store in the token. Or you could simply listen to the JWTCreatedEvent and override the value under the username key in the event's data property https://github.com/lexik/LexikJWTAuthenticationBundle/blob/master/Resources/doc/2-data-customization.md#eventsjwt_created---add-data-to-the-jwt-payload.

There will soon be another way to do that but it's still work in progress !

from lexikjwtauthenticationbundle.

Hi ,
Thank you for your help,
I have the same problem, after inspection of the code of your bundre I find that it is based on the username of the entitie, so I change the GetUserName in my entity to returns the email attribute :
public function getUsername() {
return $this->email;
}
like that when the jwtBundle looks for username it get the value of email. 👍
So I resolve the probleme without override the JWTManager because if I do that , I will have a probleme when I do an update
do not forget the parameter provider twice, in login: and the other in api:
login_Condidat:
pattern: ^/Condidat/api_REST/login
stateless: true
provider: main_candidat
anonymous: true
form_login:
check_path: /Condidat/api_REST/login_check
require_previous_session: false
username_parameter: _username
password_parameter: _password
success_handler: lexik_jwt_authentication.handler.authentication_success
failure_handler: lexik_jwt_authentication.handler.authentication_failure
api_condidat:
pattern: ^/Condidat/api_REST
provider: main_candidat
anonymous: true
stateless: true
lexik_jwt: ~
I finally want to thank the team who work on this bundle and Mr slashfan who anwser all our questions 👍

from lexikjwtauthenticationbundle.

thanks , it works now

from lexikjwtauthenticationbundle.

Thanks @AnwarAbdelkabir ! Username and email are often the same, in which case the solution you describe works perfectly. In fact that's what I do too !

from lexikjwtauthenticationbundle.