aboutsummaryrefslogtreecommitdiffhomepage
path: root/app/config/security.yml
diff options
context:
space:
mode:
authorJeremy Benoist <j0k3r@users.noreply.github.com>2015-10-06 09:19:06 +0200
committerJeremy Benoist <j0k3r@users.noreply.github.com>2015-10-06 09:19:06 +0200
commit16dabc326311f084d671be188c7941bbb3c341c9 (patch)
tree3210a7688ea2bfa1bff5fd0422b52adf570edcdc /app/config/security.yml
parentfdef5f460524215d806e244e5546865f4b8e01df (diff)
parent8263e71192989dc0fd28a41ac22f9c5b32eb11c4 (diff)
downloadwallabag-16dabc326311f084d671be188c7941bbb3c341c9.tar.gz
wallabag-16dabc326311f084d671be188c7941bbb3c341c9.tar.zst
wallabag-16dabc326311f084d671be188c7941bbb3c341c9.zip
Merge pull request #1436 from wallabag/v2-register
Public registration & oAuth2 \o/
Diffstat (limited to 'app/config/security.yml')
-rw-r--r--app/config/security.yml26
1 files changed, 14 insertions, 12 deletions
diff --git a/app/config/security.yml b/app/config/security.yml
index 98846656..576cfd25 100644
--- a/app/config/security.yml
+++ b/app/config/security.yml
@@ -1,9 +1,6 @@
1security: 1security:
2 encoders: 2 encoders:
3 Wallabag\CoreBundle\Entity\User: 3 FOS\UserBundle\Model\UserInterface: sha512
4 algorithm: sha1
5 encode_as_base64: false
6 iterations: 1
7 4
8 role_hierarchy: 5 role_hierarchy:
9 ROLE_ADMIN: ROLE_USER 6 ROLE_ADMIN: ROLE_USER
@@ -11,18 +8,23 @@ security:
11 8
12 providers: 9 providers:
13 administrators: 10 administrators:
14 entity: { class: WallabagCoreBundle:User, property: username } 11 entity: { class: WallabagUserBundle:User, property: username }
15 fos_userbundle: 12 fos_userbundle:
16 id: fos_user.user_provider.username 13 id: fos_user.user_provider.username
17 14
18 # the main part of the security, where you can set up firewalls 15 # the main part of the security, where you can set up firewalls
19 # for specific sections of your app 16 # for specific sections of your app
20 firewalls: 17 firewalls:
21 wsse_secured: 18 oauth_token:
22 pattern: /api/.* 19 pattern: ^/oauth/v2/token
23 wsse: true 20 security: false
24 stateless: true 21
25 anonymous: true 22 api:
23 pattern: /api/.*
24 fos_oauth: true
25 stateless: true
26 anonymous: true
27
26 login_firewall: 28 login_firewall:
27 pattern: ^/login$ 29 pattern: ^/login$
28 anonymous: ~ 30 anonymous: ~
@@ -45,9 +47,9 @@ security:
45 target: / 47 target: /
46 48
47 access_control: 49 access_control:
48 - { path: ^/api/salt, roles: IS_AUTHENTICATED_ANONYMOUSLY }
49 - { path: ^/api/doc, roles: IS_AUTHENTICATED_ANONYMOUSLY } 50 - { path: ^/api/doc, roles: IS_AUTHENTICATED_ANONYMOUSLY }
50 - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY } 51 - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
51 - { path: ^/forgot-password, roles: IS_AUTHENTICATED_ANONYMOUSLY } 52 - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
53 - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
52 - { path: /(unread|starred|archive).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY } 54 - { path: /(unread|starred|archive).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
53 - { path: ^/, roles: ROLE_USER } 55 - { path: ^/, roles: ROLE_USER }