public function execute($filterChain) { $context = $this->getContext(); $session_user = $context->getUser(); $cookie_name = sfConfig::get('app_remember_key_cookie_name', 'c2corg_remember'); $cookie_value = $context->getRequest()->getCookie($cookie_name); if ($this->isFirstCall() && !$session_user->isConnected() && !is_null($cookie_value)) { c2cTools::log('{rememberFilter} user has a cookie, trying to auto login'); $remember_key = RememberKey::getKey($cookie_value); if ($remember_key) { c2cTools::log('{rememberFilter} user found from his cookie'); $user = $remember_key->getUser(); if ($user->exists()) { $session_user->signIn($user->get('private_data')->getLoginName(), $user->get('private_data')->getPassword(), true, true); } // User has signed in, and is now correctly in symfony session. However, forums // and several personnalization functions rely on cookies, that will be sent with the request, // but are not yet 'available' from javascript if the value expired from previous sessions (they will be on next page) // easiest solution is to force the browser to reload the current page // we only do this for GET requests $request = $this->getContext()->getRequest(); if ($request->getMethod() == sfRequest::GET) { // symfony 1.0 getUriPrefix is not working well with https on haproxy // it then tries to redirect to https://site.org:80, which is wrong $proto = $request->isSecure() ? 'https' : 'http'; $request_uri = $proto . '://' . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI']; $this->getContext()->getController()->redirect($request_uri); exit; } } else { // delete cookie value in client so that no more requests are made to the db sfContext::getInstance()->getResponse()->setCookie($cookie_name, ''); // log this c2cTools::log('{rememberFilter} user has unknown remember key!'); c2cActions::statsdIncrement('bad_remember_cookie', 'symfony.' . sfConfig::get('sf_environment') . '.users.'); } } $filterChain->execute(); }