I have weird problem. I can’t close access for pages /registration /login /resetting for

Question

0

Asked: May 29, 20262026-05-29T07:12:22+00:00 2026-05-29T07:12:22+00:00

I have weird problem. I can’t close access for pages /registration /login /resetting for

0

I have weird problem. I can’t close access for pages

/registration
/login
/resetting

for already authorized users.

access_control:
    - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/profile, role: ROLE_USER }
    - { path: ^/admin/, role: ROLE_ADMIN }

Why is user with rule ROLE_USER have access to page /login ? And how should I close it ?
Using templates or security.xml ?

How can I redirect users with rule ROLE_USER when want to access /login ?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-29T07:12:23+00:00

Editorial Team

2026-05-29T07:12:23+00:00Added an answer on May 29, 2026 at 7:12 am

Roles are hierarchically determined in Symfony2 ; ROLE_USER is obviously in top of IS_AUTHENTICATED_ANONYMOUSLY, that’s why your users can access any pages that can be accessed for anonymous people.

If you want to restrain access, you need to check in your controller if the user is authenticated, and redirected him in this case.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have weird problem. I can’t close access for pages /registration /login /resetting for

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply