Symfony Profiler

SecurityController :: login

Request

GET Parameters

None

POST Parameters

None

Uploaded Files

None

Request Attributes

Key	Value
_controller	"App\Controller\SecurityController::login"
_firewall_context	"security.firewall.map.context.main"
_redirected	true
_route	"app_login"
_route_params	[]
_security_authenticators	[]
_security_firewall_run	"_security_main"
_security_skipped_authenticators	[Symfony\Component\Security\Http\Authenticator\FormLoginAuthenticator {#275 -options: [ "username_parameter" => "_username" "password_parameter" => "_password" "check_path" => "app_login" "post_only" => true "form_only" => false "enable_csrf" => true "csrf_parameter" => "_csrf_token" "csrf_token_id" => "authenticate" "login_path" => "app_login" "use_forward" => false ] -httpKernel: ? Symfony\Component\HttpKernel\HttpKernelInterface -httpUtils: Symfony\Component\Security\Http\HttpUtils {#266 …} -userProvider: Symfony\Bridge\Doctrine\Security\User\EntityUserProvider {#276 …} -successHandler: Symfony\Component\Security\Http\Authentication\DefaultAuthenticationSuccessHandler {#267 …} -failureHandler: Symfony\Component\Security\Http\Authentication\DefaultAuthenticationFailureHandler {#271 …} } Symfony\Component\Security\Http\Authenticator\RememberMeAuthenticator {#337 -secret: ? string -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#230 …} -cookieName: "REMEMBERME" -logger: Monolog\Logger {#272 …} -rememberMeHandler: Symfony\Component\Security\Http\RememberMe\SignatureRememberMeHandler {#338 …} }]

Request Headers

Header	Value
accept	"/"
accept-encoding	"gzip, br, zstd, deflate"
cache-enabled	"1"
cookie	"sf_redirect=%7B%22token%22%3A%22e7e7e9%22%2C%22route%22%3A%22app_gdpr_delete_account%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CGdprController%22%2C%22method%22%3A%22deleteAccountConfirmation%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fshomeretahoti%5C%2Fsrc%5C%2FController%5C%2FGdprController.php%22%2C%22line%22%3A61%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; PHPSESSID=99je8nlq9kir5p808jesl0k1al"
forwarded	"for="216.73.216.47";host="eyalvisoker.com";proto=https"
host	"eyalvisoker.com"
referer	"https://eyalvisoker.com/gdpr/delete-account"
surrogate-capability	"symfony="ESI/1.0""
user-agent	"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
x-forwarded-for	"216.73.216.47"
x-php-ob-level	"1"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header	Value
cache-control	"max-age=300, must-revalidate, public, s-maxage=300"
content-security-policy	"default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' https://fonts.gstatic.com; connect-src 'self'; media-src 'self'; object-src 'none'; frame-src 'self'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests"
content-type	"text/html; charset=UTF-8"
date	"Mon, 15 Dec 2025 23:24:31 GMT"
etag	""80b2c6b2f29399f57908da432e261405""
permissions-policy	"geolocation=(), microphone=(), camera=()"
referrer-policy	"strict-origin-when-cross-origin"
strict-transport-security	"max-age=31536000; includeSubDomains; preload"
x-content-type-options	"nosniff"
x-debug-token	"bb1722"
x-frame-options	"SAMEORIGIN"
x-xss-protection	"1; mode=block"

Cookies

Request Cookies

Key	Value
PHPSESSID	"99je8nlq9kir5p808jesl0k1al"
sf_redirect	"{"token":"e7e7e9","route":"app_gdpr_delete_account","method":"GET","controller":{"class":"App\\Controller\\GdprController","method":"deleteAccountConfirmation","file":"\/var\/www\/shomeretahoti\/src\/Controller\/GdprController.php","line":61},"status_code":302,"status_text":"Found"}"

Key

Value

PHPSESSID

"99je8nlq9kir5p808jesl0k1al"

sf_redirect

"{"token":"e7e7e9","route":"app_gdpr_delete_account","method":"GET","controller":{"class":"App\\Controller\\GdprController","method":"deleteAccountConfirmation","file":"\/var\/www\/shomeretahoti\/src\/Controller\/GdprController.php","line":61},"status_code":302,"status_text":"Found"}"

Response Cookies

No response cookies

Session

Session Metadata

Key	Value
Created	"Tue, 16 Dec 25 01:24:31 +0200"
Last used	"Tue, 16 Dec 25 01:24:31 +0200"
Lifetime	0

Session Attributes

Attribute	Value
_security.main.target_path	"https://eyalvisoker.com/gdpr/delete-account"

Session Usage

0 Usages

Stateless check enabled

Session not used.

Flashes

No flash messages were created.

Server Parameters

Defined in .env

Key	Value
API_RATE_LIMIT	"1000"
APP_DEBUG	"0"
APP_ENV	"dev"
APP_SECRET	"dc5fc115199c3e8d637159e3badc658b"
APP_TIMEZONE	"Asia/Jerusalem"
AVAILABLE_LOCALES	"he,en,ar"
BACKUP_DIRECTORY	"/var/backups/shomeretahoti"
BACKUP_RETENTION_DAYS	"30"
CACHE_DEFAULT_TTL	"3600"
CORS_ALLOW_ORIGIN	"^https?://(www\.)?shomeretahoti\.org$"
DATABASE_URL	"mysql://shomeretahoti:z048375384A%23@127.0.0.1:3306/shomeretahoti?serverVersion=8.4&charset=utf8mb4"
DEFAULT_LOCALE	"he"
DEFAULT_URI	"http://localhost"
FEATURE_CAMPAIGNS_ENABLED	"1"
FEATURE_CONTENT_LIBRARY_ENABLED	"1"
FEATURE_FORUM_ENABLED	"1"
FEATURE_ORGANIZATIONS_ENABLED	"1"
FEATURE_QUESTIONNAIRES_ENABLED	"1"
FEATURE_REMINDERS_ENABLED	"1"
FORCE_HTTPS	"1"
HSTS_MAX_AGE	"31536000"
HTTP_CACHE_ENABLED	"1"
LOCKOUT_DURATION	"900"
LOCK_DSN	"flock"
LOGIN_RATE_LIMIT	"5"
LOG_CHANNEL	"daily"
LOG_LEVEL	"error"
MAILER_DSN	"null://null"
MAILER_FROM_ADDRESS	"noreply@shomeretahoti.org"
MAILER_FROM_NAME	"Shomeret Ahoti"
MAINTENANCE_MESSAGE	"The site is currently undergoing maintenance. Please check back soon."
MAINTENANCE_MODE	"0"
MAX_LOGIN_ATTEMPTS	"5"
MAX_UPLOAD_SIZE	"100"
MESSENGER_TRANSPORT_DSN	"doctrine://default?auto_setup=0"
OPCACHE_ENABLE	"1"
PASSWORD_MIN_LENGTH	"8"
PASSWORD_REQUIRE_LOWERCASE	"1"
PASSWORD_REQUIRE_NUMBERS	"1"
PASSWORD_REQUIRE_SPECIAL_CHARS	"1"
PASSWORD_REQUIRE_UPPERCASE	"1"
REDIS_URL	"redis://REDIS_PASSWORD@REDIS_HOST:6379"
REMEMBER_ME_LIFETIME	"2592000"
SESSION_LIFETIME	"3600"
TRUSTED_HOSTS	"^shomeretahoti\.org$"
TRUSTED_PROXIES	"127.0.0.1"
UPLOAD_DIRECTORY	"public/uploads"

Defined as regular env variables

Key	Value
CONTEXT_DOCUMENT_ROOT	"/var/www/shomeretahoti/public"
CONTEXT_PREFIX	""
DOCUMENT_ROOT	"/var/www/shomeretahoti/public"
FCGI_ROLE	"RESPONDER"
GATEWAY_INTERFACE	"CGI/1.1"
HOME	"/var/www"
HTTPS	"on"
HTTP_ACCEPT	"/"
HTTP_ACCEPT_ENCODING	"gzip, br, zstd, deflate"
HTTP_COOKIE	"sf_redirect=%7B%22token%22%3A%22e7e7e9%22%2C%22route%22%3A%22app_gdpr_delete_account%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CGdprController%22%2C%22method%22%3A%22deleteAccountConfirmation%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fshomeretahoti%5C%2Fsrc%5C%2FController%5C%2FGdprController.php%22%2C%22line%22%3A61%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; PHPSESSID=99je8nlq9kir5p808jesl0k1al"
HTTP_FORWARDED	"for="216.73.216.47";host="eyalvisoker.com";proto=https"
HTTP_HOST	"eyalvisoker.com"
HTTP_REFERER	"https://eyalvisoker.com/gdpr/delete-account"
HTTP_USER_AGENT	"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
HTTP_X_FORWARDED_FOR	"216.73.216.47"
PATH	"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/snap/bin"
PHP_SELF	"/index.php"
QUERY_STRING	""
REDIRECT_HTTPS	"on"
REDIRECT_SSL_TLS_SNI	"eyalvisoker.com"
REDIRECT_STATUS	"200"
REDIRECT_URL	"/login"
REMOTE_ADDR	"127.0.0.1"
REMOTE_PORT	"50060"
REQUEST_METHOD	"GET"
REQUEST_SCHEME	"https"
REQUEST_TIME	1765841071
REQUEST_TIME_FLOAT	1765841071.5258
REQUEST_URI	"/login"
SCRIPT_FILENAME	"/var/www/shomeretahoti/public/index.php"
SCRIPT_NAME	"/index.php"
SERVER_ADDR	"172.31.0.20"
SERVER_ADMIN	"webmaster@eyalvisoker.com"
SERVER_NAME	"eyalvisoker.com"
SERVER_PORT	"443"
SERVER_PROTOCOL	"HTTP/1.1"
SERVER_SIGNATURE	"<address>Apache/2.4.58 (Ubuntu) Server at eyalvisoker.com Port 443</address>\n"
SERVER_SOFTWARE	"Apache/2.4.58 (Ubuntu)"
SSL_TLS_SNI	"eyalvisoker.com"
SYMFONY_DOTENV_PATH	"/var/www/shomeretahoti/.env"
SYMFONY_DOTENV_VARS	"APP_ENV,APP_SECRET,DEFAULT_URI,DATABASE_URL,MESSENGER_TRANSPORT_DSN,MAILER_DSN,CORS_ALLOW_ORIGIN,LOCK_DSN,APP_DEBUG,MAILER_FROM_ADDRESS,MAILER_FROM_NAME,REDIS_URL,TRUSTED_PROXIES,TRUSTED_HOSTS,MAX_UPLOAD_SIZE,UPLOAD_DIRECTORY,SESSION_LIFETIME,REMEMBER_ME_LIFETIME,MAX_LOGIN_ATTEMPTS,LOCKOUT_DURATION,PASSWORD_MIN_LENGTH,PASSWORD_REQUIRE_UPPERCASE,PASSWORD_REQUIRE_LOWERCASE,PASSWORD_REQUIRE_NUMBERS,PASSWORD_REQUIRE_SPECIAL_CHARS,LOG_LEVEL,LOG_CHANNEL,OPCACHE_ENABLE,CACHE_DEFAULT_TTL,HTTP_CACHE_ENABLED,BACKUP_DIRECTORY,BACKUP_RETENTION_DAYS,API_RATE_LIMIT,LOGIN_RATE_LIMIT,DEFAULT_LOCALE,APP_TIMEZONE,AVAILABLE_LOCALES,MAINTENANCE_MODE,MAINTENANCE_MESSAGE,FEATURE_FORUM_ENABLED,FEATURE_CAMPAIGNS_ENABLED,FEATURE_QUESTIONNAIRES_ENABLED,FEATURE_REMINDERS_ENABLED,FEATURE_CONTENT_LIBRARY_ENABLED,FEATURE_ORGANIZATIONS_ENABLED,FORCE_HTTPS,HSTS_MAX_AGE"
USER	"www-data"
proxy-nokeepalive	"1"

Symfony Profiler

GET https://eyalvisoker.com/login

Configuration Settings

Theme

Page Width

SecurityController :: login

Request

GET Parameters

POST Parameters

Uploaded Files

Request Attributes

Request Headers

Request Content

Response

Response Headers

Cookies

Request Cookies

Response Cookies

Session

Session Metadata

Session Attributes

Session Usage

Flashes

Flashes

Server Parameters

Server Parameters

Defined in .env

Defined as regular env variables