[github/wallabag/wallabag.git] / app / config / security.yml

# you can read more about security in the related section of the documentation
# http://symfony.com/doc/current/book/security.html
security:
    # http://symfony.com/doc/current/book/security.html#encoding-the-user-s-password
    encoders:
        Symfony\Component\Security\Core\User\User: plaintext

    # http://symfony.com/doc/current/book/security.html#hierarchical-roles
    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]

    # http://symfony.com/doc/current/book/security.html#where-do-users-come-from-user-providers
    providers:
        in_memory:
            memory:
                users:
                    user:  { password: userpass, roles: [ 'ROLE_USER' ] }
                    admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }

    # the main part of the security, where you can set up firewalls
    # for specific sections of your app
    firewalls:
        # disables authentication for assets and the profiler, adapt it according to your needs
        dev:
            pattern:  ^/(_(profiler|wdt)|css|images|js)/
            security: false
        # the login page has to be accessible for everybody
        demo_login:
            pattern:  ^/demo/secured/login$
            security: false

        # secures part of the application
        demo_secured_area:
            pattern:    ^/demo/secured/
            # it's important to notice that in this case _demo_security_check and _demo_login
            # are route names and that they are specified in the AcmeDemoBundle
            form_login:
                check_path: _demo_security_check
                login_path: _demo_login
            logout:
                path:   _demo_logout
                target: _demo
            #anonymous: ~
            #http_basic:
            #    realm: "Secured Demo Area"

    # with these settings you can restrict or allow access for different parts
    # of your application based on roles, ip, host or methods
    # http://symfony.com/doc/current/cookbook/security/access_control.html
    access_control:
        #- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
Commit	Line	Data
93fd4692 NL	1	# you can read more about security in the related section of the documentation
	2	# http://symfony.com/doc/current/book/security.html
	3	security:
	4	# http://symfony.com/doc/current/book/security.html#encoding-the-user-s-password
	5	encoders:
	6	Symfony\Component\Security\Core\User\User: plaintext
	7
	8	# http://symfony.com/doc/current/book/security.html#hierarchical-roles
	9	role_hierarchy:
	10	ROLE_ADMIN: ROLE_USER
	11	ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
	12
	13	# http://symfony.com/doc/current/book/security.html#where-do-users-come-from-user-providers
	14	providers:
	15	in_memory:
	16	memory:
	17	users:
	18	user: { password: userpass, roles: [ 'ROLE_USER' ] }
	19	admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }
	20
	21	# the main part of the security, where you can set up firewalls
	22	# for specific sections of your app
	23	firewalls:
	24	# disables authentication for assets and the profiler, adapt it according to your needs
	25	dev:
	26	pattern: ^/(_(profiler\|wdt)\|css\|images\|js)/
	27	security: false
	28	# the login page has to be accessible for everybody
	29	demo_login:
	30	pattern: ^/demo/secured/login$
	31	security: false
	32
	33	# secures part of the application
	34	demo_secured_area:
	35	pattern: ^/demo/secured/
	36	# it's important to notice that in this case _demo_security_check and _demo_login
	37	# are route names and that they are specified in the AcmeDemoBundle
	38	form_login:
	39	check_path: _demo_security_check
	40	login_path: _demo_login
	41	logout:
	42	path: _demo_logout
	43	target: _demo
	44	#anonymous: ~
	45	#http_basic:
	46	# realm: "Secured Demo Area"
	47
	48	# with these settings you can restrict or allow access for different parts
	49	# of your application based on roles, ip, host or methods
	50	# http://symfony.com/doc/current/cookbook/security/access_control.html
	51	access_control:
	52	#- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }