]>
Commit | Line | Data |
---|---|---|
1 | security: | |
2 | encoders: | |
3 | Wallabag\CoreBundle\Entity\User: | |
4 | algorithm: sha1 | |
5 | encode_as_base64: false | |
6 | iterations: 1 | |
7 | ||
8 | role_hierarchy: | |
9 | ROLE_ADMIN: ROLE_USER | |
10 | ROLE_SUPER_ADMIN: [ ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH ] | |
11 | ||
12 | providers: | |
13 | administrators: | |
14 | entity: { class: WallabagCoreBundle:User, property: username } | |
15 | ||
16 | # the main part of the security, where you can set up firewalls | |
17 | # for specific sections of your app | |
18 | firewalls: | |
19 | wsse_secured: | |
20 | pattern: /api/.* | |
21 | wsse: true | |
22 | stateless: true | |
23 | anonymous: true | |
24 | login_firewall: | |
25 | pattern: ^/login$ | |
26 | anonymous: ~ | |
27 | ||
28 | secured_area: | |
29 | pattern: ^/ | |
30 | anonymous: ~ | |
31 | form_login: | |
32 | login_path: /login | |
33 | ||
34 | use_forward: false | |
35 | ||
36 | check_path: /login_check | |
37 | ||
38 | post_only: true | |
39 | ||
40 | always_use_default_target_path: false | |
41 | default_target_path: / | |
42 | target_path_parameter: _target_path | |
43 | use_referer: true | |
44 | ||
45 | failure_path: null | |
46 | failure_forward: false | |
47 | ||
48 | username_parameter: _username | |
49 | password_parameter: _password | |
50 | ||
51 | csrf_parameter: _csrf_token | |
52 | intention: authenticate | |
53 | ||
54 | logout: | |
55 | path: /logout | |
56 | target: / | |
57 | ||
58 | access_control: | |
59 | - { path: ^/api/salt, roles: IS_AUTHENTICATED_ANONYMOUSLY } | |
60 | - { path: ^/api/doc, roles: IS_AUTHENTICATED_ANONYMOUSLY } | |
61 | - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY } | |
62 | - { path: ^/forgot-password, roles: IS_AUTHENTICATED_ANONYMOUSLY } | |
63 | - { path: /(unread|starred|archive).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY } | |
64 | - { path: ^/, roles: ROLE_USER } |