caisse-bliss/app/config/security.yml

55 lines
2.2 KiB
YAML
Raw Normal View History

2018-04-04 16:25:25 +02:00
# To get started with security, check out the documentation:
# https://symfony.com/doc/current/security.html
security:
encoders:
FOS\UserBundle\Model\UserInterface: bcrypt
# https://symfony.com/doc/current/security.html#b-configuring-how-users-are-loaded
providers:
fos_userbundle:
id: fos_user.user_provider.username
firewalls:
2018-04-25 14:47:31 +02:00
secured_area:
anonymous: ~
logout_on_user_change: true
oauth:
resource_owners:
# facebook: "/login/check-facebook"
google: "/login/check-google"
disqus: "/login/check-disqus"
twitter: "/login/check-twitter"
# my_custom_provider: "/login/check-custom"
login_path: /login
use_forward: false
failure_path: /login
oauth_user_provider:
service: my.oauth_aware.user_provider.service
2018-04-04 16:25:25 +02:00
# disables authentication for assets and the profiler, adapt it according to your needs
dev:
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false
main:
pattern: ^/
form_login:
provider: fos_userbundle
csrf_token_generator: security.csrf.token_manager
2018-04-18 14:39:15 +02:00
default_target_path: dashboard
2018-04-04 16:25:25 +02:00
logout: true
anonymous: true
logout_on_user_change: true
2018-04-18 14:39:15 +02:00
# https://symfony.com/doc/current/security/form_login_setup.html
2018-04-04 16:25:25 +02:00
# activate different ways to authenticate
# https://symfony.com/doc/current/security.html#a-configuring-how-your-users-will-authenticate
#http_basic: ~
role_hierarchy:
ROLE_ADMIN: ROLE_USER
ROLE_SUPER_ADMIN: ROLE_ADMIN
access_control:
2018-04-17 14:52:31 +02:00
- { path: ^/dashboard$, role: IS_AUTHENTICATED_REMEMBERED }
2018-04-04 16:25:25 +02:00
- { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/admin/, role: ROLE_ADMIN }