* public registration

* remove WSSE implementation * add oAuth2 implementation
author: Nicolas Lœuillet <nicolas@loeuillet.org> 2015-09-29 14:31:52 +0200
committer: Jeremy Benoist <jeremy.benoist@gmail.com> 2015-10-03 13:30:43 +0200
commit: fcb1fba5c2fdb12c9f4041bd334aaced6f302d91 (patch)
tree: 0f388190a3648127c06dd3b4b9b198d2505bb7a8 /app
parent: 8a60bc4cc2b6b1cfb5d8beb7ddcafc51d89a64c9 (diff)
download: wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.tar.gz
wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.tar.zst
wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.zip
6 files changed, 32 insertions, 20 deletions
diff --git a/app/AppKernel.php b/app/AppKernel.php
index 08e14b8f..6f8c3a6d 100644
--- a/app/AppKernel.php
+++ b/app/AppKernel.php
@@ -26,6 +26,7 @@ class AppKernel extends Kernel
            new Wallabag\ApiBundle\WallabagApiBundle(),
            new Bazinga\Bundle\HateoasBundle\BazingaHateoasBundle(),
            new Lexik\Bundle\FormFilterBundle\LexikFormFilterBundle(),
+            new FOS\OAuthServerBundle\FOSOAuthServerBundle(),
        );
        if (in_array($this->getEnvironment(), array('dev', 'test'))) {
diff --git a/app/config/config.yml b/app/config/config.yml
index f623ab23..adf68d6c 100644
--- a/app/config/config.yml
+++ b/app/config/config.yml
@@ -157,3 +157,17 @@ fos_user:
    db_driver: orm
    firewall_name: main
    user_class: Wallabag\CoreBundle\Entity\User
+    registration:
+        form:
+            type: wallabag_user_registration
+        confirmation:
+            enabled: true
+fos_oauth_server:
+    db_driver:           orm
+    client_class:        Wallabag\ApiBundle\Entity\Client
+    access_token_class:  Wallabag\ApiBundle\Entity\AccessToken
+    refresh_token_class: Wallabag\ApiBundle\Entity\RefreshToken
+    auth_code_class:     Wallabag\ApiBundle\Entity\AuthCode
+    service:
+        user_provider: fos_user.user_manager
diff --git a/app/config/config_prod.yml b/app/config/config_prod.yml
index c45f0fa6..342837a0 100644
--- a/app/config/config_prod.yml
+++ b/app/config/config_prod.yml
@@ -17,11 +17,6 @@ monolog:
            type:         fingers_crossed
            action_level: error
            handler:      nested
-        wsse:
-            type: stream
-            path: %kernel.logs_dir%/%kernel.environment%.wsse.log
-            level: error
-            channels: [wsse]
        nested:
            type:  stream
            path:  "%kernel.logs_dir%/%kernel.environment%.log"
diff --git a/app/config/routing.yml b/app/config/routing.yml
index e8bf08a5..dabb48fa 100644
--- a/app/config/routing.yml
+++ b/app/config/routing.yml
@@ -30,3 +30,9 @@ homepage:
    defaults:  { _controller: WallabagCoreBundle:Entry:showUnread, page : 1 }
    requirements:
        page:  \d+
+fos_user:
+    resource: "@FOSUserBundle/Resources/config/routing/all.xml"
+fos_oauth_server_token:
+    resource: "@FOSOAuthServerBundle/Resources/config/routing/token.xml"
diff --git a/app/config/security.yml b/app/config/security.yml
index 98846656..6533a430 100644
--- a/app/config/security.yml
+++ b/app/config/security.yml
@@ -1,9 +1,6 @@
 security:
    encoders:
-        Wallabag\CoreBundle\Entity\User:
+        FOS\UserBundle\Model\UserInterface: sha512
-            algorithm:        sha1
-            encode_as_base64: false
-            iterations:       1
    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
@@ -18,11 +15,15 @@ security:
    # the main part of the security, where you can set up firewalls
    # for specific sections of your app
    firewalls:
-        wsse_secured:
+        oauth_token:
-            pattern:      /api/.*
+            pattern: ^/oauth/v2/token
-            wsse:         true
+            security: false
-            stateless:    true
+        api:
-            anonymous:    true
+            pattern: /api/.*
+            fos_oauth: true
+            stateless: true
+            anonymous: false
        login_firewall:
            pattern:    ^/login$
            anonymous:  ~
@@ -45,9 +46,9 @@ security:
                target: /
    access_control:
-        - { path: ^/api/salt, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/api/doc, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/forgot-password, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: /(unread|starred|archive).xml$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/, roles: ROLE_USER }
diff --git a/app/config/services.yml b/app/config/services.yml
index 965bc319..ff6a582b 100644
--- a/app/config/services.yml
+++ b/app/config/services.yml
@@ -1,9 +1,4 @@
-# Learn more about services, parameters and containers at
-# http://symfony.com/doc/current/book/service_container.html
 parameters:
-    security.authentication.provider.dao.class: Wallabag\CoreBundle\Security\Authentication\Provider\WallabagAuthenticationProvider
-    security.encoder.digest.class: Wallabag\CoreBundle\Security\Authentication\Encoder\WallabagPasswordEncoder
-    security.validator.user_password.class: Wallabag\CoreBundle\Security\Validator\WallabagUserPasswordValidator
    lexik_form_filter.get_filter.doctrine_orm.class: Wallabag\CoreBundle\Event\Subscriber\CustomDoctrineORMSubscriber
 services:
author	Nicolas Lœuillet <nicolas@loeuillet.org>	2015-09-29 14:31:52 +0200
committer	Jeremy Benoist <jeremy.benoist@gmail.com>	2015-10-03 13:30:43 +0200
commit	fcb1fba5c2fdb12c9f4041bd334aaced6f302d91 (patch)
tree	0f388190a3648127c06dd3b4b9b198d2505bb7a8 /app
parent	8a60bc4cc2b6b1cfb5d8beb7ddcafc51d89a64c9 (diff)
download	wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.tar.gz wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.tar.zst wallabag-fcb1fba5c2fdb12c9f4041bd334aaced6f302d91.zip