From 64f1fa0ef6f7065eabadc4d535d07bdca5a5cccc Mon Sep 17 00:00:00 2001 From: Geoffrey Brier Date: Wed, 19 Apr 2017 21:51:51 +0200 Subject: [PATCH 1/2] Add security stateless tip --- reference/configuration/security.rst | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/reference/configuration/security.rst b/reference/configuration/security.rst index ef693c8a576..ccbbf2dd644 100644 --- a/reference/configuration/security.rst +++ b/reference/configuration/security.rst @@ -517,6 +517,11 @@ multiple firewalls, the "context" could actually be shared: ), )); +.. note:: + + As this context is stored in session, it's important to have each firewall having the ``stateless`` option set to + false otherwise you won't able to be authenticated on multiple firewall at the same time. + HTTP-Digest Authentication -------------------------- From 9533b68726e2138e4c868d24eb2c975d01062c0b Mon Sep 17 00:00:00 2001 From: Javier Eguiluz Date: Thu, 20 Apr 2017 09:04:18 +0200 Subject: [PATCH 2/2] Minor reword and reformatting --- reference/configuration/security.rst | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/reference/configuration/security.rst b/reference/configuration/security.rst index ccbbf2dd644..fb95d172674 100644 --- a/reference/configuration/security.rst +++ b/reference/configuration/security.rst @@ -519,8 +519,10 @@ multiple firewalls, the "context" could actually be shared: .. note:: - As this context is stored in session, it's important to have each firewall having the ``stateless`` option set to - false otherwise you won't able to be authenticated on multiple firewall at the same time. + The firewall context key is stored in session, so every firewall using it + must set its ``stateless`` option to ``false``. Otherwise, the context is + ignored and you won't be able to authenticate on multiple firewalls at the + same time. HTTP-Digest Authentication --------------------------