security-http | Symfony Security Component - HTTP Integration | Authorization library

My application (based on the Symfony5 framework) used a traditional guard authenticator. Users login with a traditional login form. All was created via the maker bundle and the make:auth command.

I'm trying the 5.3.0-RC1, and I discover that the guard authenticator will be deprecated. So, I'm trying to migrate my security to use the new authenticator-based security. But I loosed my csrf token, at the first step.

Here is the core of my AppAuthenticator class extending the new AbstractAuthenticator:

I am using UVdesk for a ticketing system. I have tested it locally and uploaded it to the server. Everything was working fine until recently the UVdesk on the live server started to get logged out frequently while accessing any of the links. It's working fine in my local system. I have checked the server logs but couldn't find any issue in the logs. What is happening is that when I click a link it's giving a 302 response with a redirect to login.

I have enabled the development mode and now I am getting this error while redirected:

I want to use jwt token in my symfony project. But i have a problem because when i use: curl.exe -X POST -H "Content-Type: application/json" http://localhost:81/api/login_check -d '{"username": "f.djawid@outlook.com","password":"000000"}'

I get : {"code":401,"message":"JWT Token not found"}

This is my security.yml:

I'm writing a PHP application based on Symfony v5.0.11. Now I want to upgrade Symfony to the ^v5.2. (The Composer version is 2.0.12.)

My website is down since composer update. The issue seems not on the updated packages themselves (I run them in dev environment without problems, too). It seems that 'only' the cache cannot clean itself correctly.

I'm using symfony 4.4 via docker and installed FOS user bundle some time ago. Everything was working fine but recently while trying to login, i keep getting the error

Call to a member function findOneBy() on null. The full trace is this

i am running a an error "Select a valid deployment group for the service." when i try to do a blue/green deployment on my ecs service. (https://monosnap.bugsmasher.online/marcoschmiedel/20200716192812untnf_.png)

Can anybody tell me what a "valid deployment group" is all about?

Heres my environment as yaml file....

Thx for the help...

I installed the SensioLabs security checker recipe using composer and it looks like it installed the recipe but I get the following two warnings

• [CVE-2020-5255][]: Prevent cache poisoning via a Response Content-Type header

• [CVE-2020-5275][]: All rules set in "access_control" are required when the firewall is configured with the unanimous strategy

I would like to know what I should do to fix this please? I am using the latest version of Symfony 5 on a Linux Mint 19 machine.