Use a shared session cookie between admin and website

config/packages/framework.yaml

@@ -7,6 +7,7 @@ framework:
     # Enables session support. Note that the session will ONLY be started if you read or write from it.
     # Remove or comment this section to explicitly disable session support.
     session:
+        cookie_path: /
         name: SULUSESSID # This avoids conflicts with other applications running on the same domain
 
     #esi: true

config/packages/security.yaml

@@ -39,6 +39,7 @@ security:
                 failure_handler: sulu_security.authentication_handler
             logout:
                 path: sulu_admin.logout
+                # invalidate_session: false # If you have multiple firewalls, you might want to set this to true to only logout of the current firewall
             two_factor:
                 prepare_on_login: true
                 prepare_on_access_denied: true
@@ -62,6 +63,7 @@ security:
        #    logout:
        #        path: logout
        #        target: /
+       #        # invalidate_session: false # If you have multiple firewalls, you might want to set this to true to only logout of the current firewall
        #    remember_me:
        #        secret:   "%kernel.secret%"
        #        lifetime: 604800 # 1 week in seconds