编辑:最后有一个Tl;博士......
在使用symfony2和自动生成的表单时,我一直收到CSRF错误。
这是我的控制器:(调用new显示表单,在提交时调用create)
public function newAction($guru)
{
//Make the Entity Manager
$em = $this->getDoctrine()
->getEntityManager();
$guru = $em->getRepository('TSNStatsBundle:Guru')
->findOneById($guru);
//If the guru id exists
if ($guru)
{
$alert = new Alert();
//Create default values
$time = new \DateTime(2012-12-30);
$time->setTime(23,59);
//Set default times to "none available (23:59)"
$alert->setText($time)
->setEmail($time)
->setTwitter($time)
->setChat($time)
->setGuru($guru);
//Make the form, set types,
$formBuilder = $this->createFormBuilder($alert);
$formBuilder->add('buy', 'checkbox', array(
'required' => false
))
->add('date', 'date', array(
'input' => 'datetime',
'widget' => 'single_text'
))
->add('stock', new StockType());
if ($guru->getInstantAlerts() ==1)
{
if ($guru->getText() == 1)
{
$formBuilder->add('text', 'time', array(
'input' => 'datetime',
'widget' => 'text',
));
}
if ($guru->getEmail() == 1)
{
$formBuilder->add('email', 'time', array(
'input' => 'datetime',
'widget' => 'text',
));
}
if ($guru->getTwitter() == 1)
{
$formBuilder->add('twitter', 'time', array(
'input' => 'datetime',
'widget' => 'text',
));
}
if ($guru->getChat() == 1)
{
$formBuilder->add('chat', 'time', array(
'input' => 'datetime',
'widget' => 'text',
));
}
}
$formBuilder->add('size')
->add('short', 'checkbox', array(
'required' => false
))
->add('his')
->add('guru');
$form = $formBuilder->getForm();
return $this->render('TSNStatsBundle:Buy:new.html.twig', array(
'form' => $form->createView(),
'guru' => $guru
));
}
else
{
//your guru ain't real bro!
}
return $this->render('TSNStatsBundle:Buy:new.html.twig', array(
'alert' => $alert,
'form' => $form->createView(),
'guru' => $guru->getName()
));
}
public function createAction()
{
$alert = new Alert();
$form = $this->createForm(new AlertType(), $alert);
$request = $this->getRequest();
if ($this->getRequest()->getMethod() == 'POST') {
$form ->bind($request);
if ($form->isValid())
{
$em = $this->getDoctrine()
->getEntityManager();
$em->persist($alert);
$em->flush();
return $this->redirect($this->generateUrl('new_alert', array(
'guru' => 2
) ));
}
}
return $this->render('TSNStatsBundle:Buy:errors.html.twig', array(
'errors' => $form->getErrors()
));
}
这是我的模板:
Adding entry for {{ guru }}
<form action="{{ path('create_alert' ) }}" method="post" {{ form_enctype(form) }} class="alert">
{{ form_widget(form) }}
<p>
<input type="submit" value="Submit">
</p>
</form>
据我所知,一切都在书中。每次刷新时,每个表单都有一个_token值,它被调用的小部件,所以所有部分都应该在那里......
谢谢,
编辑: 当我用:
替换整个表单创建过程时$form = $this->createForm(new AlertType(), $alert);
铊;博士: 使用带有* entity的createForm调用* Type调用工作正常,使用createFormBuilder()创建自己的表单会在每次提交时遇到CSRF错误....同样的_token用于两者。
答案 0 :(得分:2)
也许使用它可以帮助你:
{{form_widget(form._token)}}
答案 1 :(得分:1)
尝试替换
{{ form_widget(form) }}
{{ form_rest(form) }}
对于
{{ form_widget(form) }}
答案 2 :(得分:0)
您可以将与表单类型相同的$ options数组传递给FormBuilder,并且可以通过这种方式关闭csrf保护:
$this->createFormBuilder($object, $options = array(
'csrf_protection' => false,
));
原始示例: http://symfony.com/doc/current/book/forms.html#csrf-protection