Add caution when returning null from createToken()

symfony · Dec 5, 2015 · 4885240 · 4885240
1 parent 340ec5f
commit 4885240
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/cookbook/security/api_key_authentication.rst b/cookbook/security/api_key_authentication.rst
@@ -128,6 +128,11 @@ will cause authentication to fail. You might want to return ``null`` instead
 to just skip the authentication, so Symfony can fallback to another authentication
 method, if any.
 
+.. caution::
+
+    In case you return ``null`` from your ``createToken()`` method, be sure to enable
+    ``anonymous`` in you firewall. This way you'll be able to get an ``AnonymousToken``.
+
 2. supportsToken
 ~~~~~~~~~~~~~~~~