Writing a project in Silex, it's here is TK :
There is a need to authenticate the user through the login form and some API key. The API key can be the same pair of username:password in the form.
The bottom line: the authorization should work through the form and using the REST console or curl on the command line. Importantly, methods are now available to the appraiser, authorized via the form, was available as a third-party application that sent the username and password of the appraiser.
Prompt please in what side to dig.
I team lead suggested that the need to dig in the direction of Guard the Symfony Component
But I did not understand, poor knowledge of English, and the translator is crap