Когда я пытаюсь войти в систему, я получаю информацию, что я ввожу неверные данные.Метод возвращает false с сообщением:
Аутентификация не удалась, поскольку App \ Security \ LoginFormAuthenticator :: checkCredentials () не вернула true.
Ведение журнала на основеДокументация Symfony https://symfony.com/doc/current/security/form_login_setup
Пользователь Entity
* @ORM\Entity(repositoryClass="App\Repository\UserRepository")
* @ORM\Table(name="users")
* @ORM\HasLifecycleCallbacks
class User implements UserInterface
* The unique auto incremented primary key.
* @ORM\Id()
* @ORM\GeneratedValue()
* @ORM\Column(type="integer", unique=true)
private $id;
* The internal primary identity key.
* @var int
* @ORM\Column(type="integer", unique=true)
private $uid;
* @ORM\Column(type="string", length=180, unique=true)
* @Assert\Email(
* checkMX = true
* )
private $email;
* @ORM\Column(type="json")
private $roles = [];
* @var string The hashed password bcrypt
* @ORM\Column(type="string")
private $password;
* @ORM\Column(type="string", length = 50)
* @Assert\NotBlank(
* groups = {"Registration", "ChangeDetails"}
* )
* @Assert\Length(
* min=3,
* max=50,
* groups = {"Registration", "ChangeDetails"}
* )
* @var string
protected $name;
* @ORM\Column(type="string", length = 50)
* @Assert\NotBlank(
* groups = {"Registration", "ChangeDetails"}
* )
* @Assert\Length(
* min=3,
* max=50,
* groups = {"Registration", "ChangeDetails"}
* )
* @var string
protected $surname;
* @ORM\Column(type="string", length = 10000,)
* @Assert\Length(
* max=10000,
* groups = {"Registration", "ChangeDetails"}
* )
* @var string A detailed description of the user available to the application administrator
protected $description;
* @ORM\Column(name="account_locked", type="boolean")
* @var bool
protected $accountLocked = false;
* @ORM\Column(name="register_date", type="datetime")
* @var \DateTime
protected $createDate;
public function getId(): int
return $this->id;
public function getUid(): int
return $this->uid;
public function getEmail(): string
return $this->email;
public function setEmail(string $email): self
$this->email = $email;
return $this;
* A visual identifier that represents this user.
* @see UserInterface
public function getUsername(): string
return (string) $this->email;
* @see UserInterface
public function getRoles(): array
$roles = $this->roles;
// guarantee every user at least has ROLE_USER
$roles[] = 'ROLE_USER';
return array_unique($roles);
public function setRoles(array $roles): self
$this->roles = $roles;
return $this;
* @see UserInterface
public function getPassword(): string
return (string) $this->password;
public function setPassword(string $password): self
$this->password = $password;
return $this;
* @see UserInterface
public function getSalt()
// not needed when using the "bcrypt" algorithm in security.yaml
* @see UserInterface
public function eraseCredentials()
// If you store any temporary, sensitive data on the user, clear it here
// $this->plainPassword = null;
public function __construct()
$this->registerDate = new \DateTime();
$this->uid = mt_rand(100000, 999999);
* Get name.
* @return string
public function getName(): string
return $this->name;
* Set surname.
* @param string $surname
* @return User
public function setSurname(string $surname): User
$this->surname = $surname;
return $this;
* Get surname.
* @return string
public function getSurname(): string
return $this->surname;
* Set accountLocked.
* @param bool $accountLocked
* @return User
public function setAccountLocked(bool $accountLocked): User
$this->accountNonLocked = $accountLocked;
return $this;
* Get accountLocked.
* @return bool
public function getAccountLocked(): bool
return $this->accountNonLocked;
public function serialize()
return serialize([
public function unserialize($serialized)
) = unserialize($serialized);
* Set name.
* @param string $name
* @return User
public function setName(string $name): User
$this->name = $name;
return $this;
class SecurityController extends AbstractController
* @Route("/login", name="login")
public function login(AuthenticationUtils $authenticationUtils): Response
$error = $authenticationUtils->getLastAuthenticationError();
$lastUsername = $authenticationUtils->getLastUsername();
return $this->render('security/login.html.twig', [
'last_username' => $lastUsername,
'error' => $error,
Security / Loginformauthenticator
class LoginFormAuthenticator extends AbstractFormLoginAuthenticator
use TargetPathTrait;
private $entityManager;
private $router;
private $csrfTokenManager;
private $passwordEncoder;
public function __construct(EntityManagerInterface $entityManager, RouterInterface $router, CsrfTokenManagerInterface $csrfTokenManager, UserPasswordEncoderInterface $passwordEncoder)
$this->entityManager = $entityManager;
$this->router = $router;
$this->csrfTokenManager = $csrfTokenManager;
$this->passwordEncoder = $passwordEncoder;
public function supports(Request $request)
return 'login' === $request->attributes->get('_route')
&& $request->isMethod('POST');
public function getCredentials(Request $request)
$credentials = [
'email' => $request->request->get('email'),
'password' => $request->request->get('password'),
'csrf_token' => $request->request->get('_csrf_token'),
return $credentials;
public function getUser($credentials, UserProviderInterface $userProvider)
$token = new CsrfToken('authenticate', $credentials['csrf_token']);
if (!$this->csrfTokenManager->isTokenValid($token)) {
throw new InvalidCsrfTokenException();
$user = $this->entityManager->getRepository(User::class)->findOneBy(['email' => $credentials['email']]);
if (!$user) {
throw new CustomUserMessageAuthenticationException('Email could not be found.');
return $user;
public function checkCredentials($credentials, UserInterface $user)
$param = $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
return $param;
public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
return new RedirectResponse($targetPath);
return new RedirectResponse($this->router->generate('panel_dashboard'));
protected function getLoginUrl()
return $this->router->generate('login');
algorithm: bcrypt
class: App\Entity\User
property: email
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false
anonymous: true
- App\Security\LoginFormAuthenticator
- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/panel, roles: ROLE_ADMIN }
- { path: ^/profile, roles: ROLE_USER }
Форма входа
<form method="post" class="form-horizontal form-material" id="loginform">
{% if error %}
<div class="alert alert-danger">{{ error.messageKey|trans(error.messageData, 'security') }}</div>
{% endif %}
<h3 class="text-center m-b-20">{% trans %}Sign In{% endtrans %}</h3>
<div class="form-group ">
<div class="col-xs-12">
<input type="email" value="{{ last_username }}" name="email" class="form-control" placeholder="{% trans %}Username{% endtrans %}" required>
<div class="form-group">
<div class="col-xs-12">
<input name="password" type="password" class="form-control" placeholder="{% trans %}Password{% endtrans %}" required>
<input type="hidden" name="_csrf_token" value="{{ csrf_token('authenticate') }}">
<div class="form-group row">
<div class="col-md-12">
<div class="d-flex no-block align-items-center">
<div class="custom-control custom-checkbox">
<input name="_remember_me" type="checkbox" class="custom-control-input" id="customCheck1">
<label class="custom-control-label" for="customCheck1">{% trans %}Remember me{% endtrans %}</label>
<div class="ml-auto">
<a href="javascript:void(0)" id="to-recover" class="text-muted"><i class="fas fa-lock m-r-5"></i>{% trans %} Forgot pwd{% endtrans %}?</a>
<div class="form-group text-center">
<div class="col-xs-12 p-b-20">
<button class="btn btn-block btn-lg btn-info btn-rounded" type="submit">{% trans %}Log In{% endtrans %}</button>
class UserFixtures extends Fixture
* @var UserPasswordEncoderInterface
private $passwordEncoder;
* UserFixtures constructor.
* @param UserPasswordEncoderInterface $passwordEncoder
public function __construct(UserPasswordEncoderInterface $passwordEncoder)
$this->passwordEncoder = $passwordEncoder;
* @return int
public function getOrder()
return 0;
* @param ObjectManager $manager
* @throws \Exception
public function load(ObjectManager $manager)
$usersList = [
'name' => 'Tomasz',
'surname' => 'Kowalik',
'description' => 'Vestibulum non ipsum. Curabitur egestas. Integer hendrerit purus consectetuer adipiscing elit. In sodales in, elementum vel, velit. Suspendisse fermen',
'email' => 'tomek@test.pl',
'password' => 'password',
'role' => 'ROLE_ADMIN',
'points' => '0',
foreach ($usersList as $userDetails) {
$user = new User();
->setPassword($this->passwordEncoder->encodePassword($user, $userDetails['surname']))
->setCreateDate(new \DateTime());
$this->addReference('user-'.$userDetails['surname'], $user);