On 19.04.2011, at 21:05, Johannes Schmitt <schmitt...@gmail.com> wrote:

> Since I wasn't present at this talk, could you explain the reasoning behind 
> having a "light" bundle? What's its purpose?

he spend a fair bit of time explaining how multiple firewalls work. though its 
pretty clear most applications will never need this. however when you start out 
you do not even expect this feature as no other php framework i know provides 
capabilities like this.

this in turn means that in the beginning you think that you need to use one 
firewall for each auth method. since afterall why else would here be multiple 
firewalls?

same with the userbundle. it confuses uses what and why they need to set the 
firewall name so that we can authenticate after password recovery. 

another classic is the redirect loop on the login page because anonymous access 
hasnt been granted.

but like i said this light bundle should extend the SecurityBundle and would 
only contain a DI extension for configuration. there would be no additional 
runtime logic. 

regards
Lukas

-- 
If you want to report a vulnerability issue on symfony, please send it to 
security at symfony-project.com

You received this message because you are subscribed to the Google
Groups "symfony developers" group.
To post to this group, send email to symfony-devs@googlegroups.com
To unsubscribe from this group, send email to
symfony-devs+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-devs?hl=en

Reply via email to