zend-blog-3-backend

1
security:
2
    password_hashers:
3
        App\Entity\User:
4
            algorithm: sha384
5
            iterations: 3600
6
            encode_as_base64: false
7

8
    # https://symfony.com/doc/current/security.html#where-do-users-come-from-user-providers
9
    providers:
10
        user_db:
11
            entity:
12
                class: App\Entity\User
13
                property: username
14

15
    firewalls:
16
        dev:
17
            pattern: ^/(_(profiler|wdt)|css|images|js)/
18
            security: false
19

20
        login_firewall:
21
            pattern: ^/login$
22
            anonymous: ~
23

24
        default:
25
            pattern: ^/
26
            anonymous: ~
27
            form_login:
28
                provider: user_db
29
                login_path: /login
30
                check_path: /login_check
31
            logout:
32
                path: /logout
33
                target: /login
34
            wsse:
35
                lifetime: "%wsse_token_lifetime%"
36

37
            # activate different ways to authenticate
38
            # https://symfony.com/doc/current/security.html#firewalls-authentication
39

40
    role_hierarchy:
41
        ROLE_ADMIN: ROLE_USER
42

43
    access_control:
44
        - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
45
        - { path: ^/telegram, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
46
        - { path: ^/webhook, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
47
        - { path: ^/preview, roles: ROLE_USER, requires_channel: https }
48
        - { path: ^/, roles: ROLE_ADMIN, requires_channel: https }
49