fosoauthserverbundle

I have setup an app with: FriendsOfSymfony/FOSUserBundle FriendsOfSymfony/FOSOAuthServerBundle FriendsOfSymfony/FOSRestBundle I have successfully created a client and can get an access token using a url like this http://api.mydomain.com/oauth/v2/token?client_id=CLIENT_ID&client_secret=CLIENT_SECRET&grant_type=password&username=mikebates&password=secret However, when I then try to access the a url like this http://api.mydomain.com/api/surgeries/45/details?access_token=ACCESS_TOKEN I get redirected to the symfony login page, but I can't have that or the mobile app I'm build to consume this REST

I have developed a REST API, there are two ways to connect to it: session and oauth. Basically, my website will use the session mode and third-party softwares will use the oauth mode. I managed to make make both session and oauth modes to work in symfony, but I can't make them work at the same time. Here is my firewalls security config: firewalls: auth_oauth_token: pattern: ^/auth/oauth/v2/token security: false api: pattern: ^/api anonymous: false fos_oauth: true stateless: true auth: pattern: ^/ anonymous: ~ form_login: login_path: /auth/session/check check_path: /auth/session/login always

I would like to provide a RESTful API secured with OAuth2 using FOSOAuthServerBundle and I'm not really sure about what I have to do. I followed basic steps from the documentation but some things are missing and I can't find a complete example of what I need. So, I tried to understand the best I could this example of implementation (the only one I found) but there are still things I don't understand. First, why do we need a login page in an API? Let's suppose my client is a iPhone or Android App, I see the interest of the login page on the app, but I think the client have just to call a