Your code to set a user as authenticated is before your code to add them to database. Therefore the user is marked as authenticated, then the database gets checked and then fails ... but the user is still authenticated.
On Fri, Apr 1, 2011 at 6:26 PM, Philip Cole <phi...@pcole.me> wrote: > Hi all, > > This is kind of weird and I don't understand how it happens. Hope > someone can help or has an idea why it could happen. > I created a simple form to change my authenticated user's username and > when I change to somebody else's username > I get an error (because the username is unique) but on the next page > refresh I am suddenly authenticated as the other user. > > Note: I a doctrine entities for my users. > > Any thoughts? > > Thanks, > > Philip > > -- > If you want to report a vulnerability issue on symfony, please send it to > security at symfony-project.com > > You received this message because you are subscribed to the Google > Groups "symfony users" group. > To post to this group, send email to symfony-users@googlegroups.com > To unsubscribe from this group, send email to > symfony-users+unsubscr...@googlegroups.com > For more options, visit this group at > http://groups.google.com/group/symfony-users?hl=en > -- Gareth McCumskey http://garethmccumskey.blogspot.com twitter: @garethmcc identi.ca: @garethmcc -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to symfony-users@googlegroups.com To unsubscribe from this group, send email to symfony-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en
