It's probably because you have only IS_AUTHENTICATED_ANONYMOUSLY role
for path ^/login set in security.yml. So then there is no authentication
token allowed to be passed to LoginController.
You should try either to add ROLE_ADMIN also for ^/login path in the
access_control, or include ^/login under ^/administration so it will become
And as condition in LoginController you should try to use