JWT Token not found

[salamisodikiolawale]

Hello, I don't really understand what is going on. I have been encountering this error for 3 days.
I get my token but when I put a firewall rule on a route and I send the request with the obtained token I get the error 401 Token not found.

This is my security file :

`security:
enable_authenticator_manager: true
# https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
password_hashers:
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
App\Entity\User:
algorithm: auto

# https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider
providers:
    # used to reload user from session & other features (e.g. switch_user)
    app_user_provider:
        entity:
            class: App\Entity\User
            property: email
firewalls:
    dev:
        pattern: ^/(_(profiler|wdt)|css|images|js)/
        security: false

    login:
        pattern: ^/api/login
        stateless: true
        json_login:
            check_path: /api/login_check # or api_login_check as defined in config/routes.yaml
            username_path: email
            password_path: password
            success_handler: lexik_jwt_authentication.handler.authentication_success
            failure_handler: lexik_jwt_authentication.handler.authentication_failure
    
    article:
        pattern:   ^/api/articles
        methods: [POST, PUT, PATCH, DELETE]
        stateless: true
        guard:
            authenticators:
                - lexik_jwt_authentication.jwt_token_authenticator
    api:
        pattern:   ^/api
        stateless: true
        guard:
            authenticators:
                - lexik_jwt_authentication.jwt_token_authenticator
    

    main:
        lazy: true
        provider: app_user_provider

        # activate different ways to authenticate
        # https://symfony.com/doc/current/security.html#the-firewall

        # https://symfony.com/doc/current/security/impersonating_user.html
        # switch_user: true

# Easy way to control access for large sections of your site
# Note: Only the *first* access control that matches will be used
access_control:
    # - { path: ^/admin, roles: ROLE_ADMIN }
    # - { path: ^/profile, roles: ROLE_USER }
    - { path: ^/api/login, roles: PUBLIC_ACCESS }
    - { path: ^/api,       roles: IS_AUTHENTICATED_FULLY }
    - { path: ^/api/articles, roles: IS_AUTHENTICATED_FULLY, methods: [POST, PUT, PATCH, DELETE] }

when@test:
security:
password_hashers:
# By default, password hashers are resource intensive and take time. This is
# important to generate secure password hashes. In tests however, secure hashes
# are not important, waste resources and increase test times. The following
# reduces the work factor to the lowest possible values.
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
algorithm: auto
cost: 4 # Lowest possible value for bcrypt
time_cost: 3 # Lowest possible value for argon
memory_cost: 10 # Lowest possible value for argon

`

My route file:

api_login_check: path: /api/login_check

[fd6130]

Hi, just replace your guard to jwt instead (guard is deprecated):

article:
        pattern:   ^/api/articles
        methods: [POST, PUT, PATCH, DELETE]
        stateless: true
        jwt: ~
    api:
        pattern:   ^/api
        stateless: true
        jwt: ~

[codebysaadbouh]

Hello @salamisodikiolawale, I finally found the problem. Actually there are libraries that only work in HTTPS and I think LexikJWTAuthenticationBundle is one of them, so it is necessary to activate the TLS with the command symfony server:ca:install (https://symfony.com/doc/current/setup/symfony_server.html#enabling-tls)

[salamisodikiolawale]

Hello @salamisodikiolawale, I finally found the problem. Actually there are libraries that only work in HTTPS and I think LexikJWTAuthenticationBundle is one of them, so it is necessary to activate the TLS with the command symfony server:ca:install (https://symfony.com/doc/current/setup/symfony_server.html#enabling-tls)

With Docker environnement ?
Because without Docker i had not need to https with lexikjwt.

[codebysaadbouh]

but without docker when you do a symfony server:start you don't have https:... ?

[salamisodikiolawale]

but without docker when you do a symfony server:start you don't have https:... ?

My origin problem is jwt, not protocol https.
without docker my api works fine with lexik bundle token management but once I containerize my api with docker that's when I have the token problem.

[salamisodikiolawale]

or maybe I didn't understand your solution.