Here is my security.yml file :
security:
encoders:
Symfony\Component\Security\Core\User\User: plaintext
role_hierarchy:
ROLE_ADMIN: ROLE_USER
ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
providers:
in_memory:
users:
user: { password: userpass, roles: [ 'ROLE_USER' ] }
admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }
firewalls:
profiler:
pattern: ^/_profiler
security: false
wdt:
pattern: ^/_wdt
security: false
login:
#pattern: ^/demo/secured/login$
pattern: ^/secured/login$
security: false
secured_area:
#pattern: ^/demo/secured/
pattern: ^/admin/
form_login:
#check_path: /demo/secured/login_check
#login_path: /demo/secured/login
check_path: /secured/login_check
login_path: /secured/login
logout:
#path: /demo/secured/logout
#target: /demo/
path: /secured/logout
target: /
#anonymous: ~
#http_basic:
# realm: "Secured Demo Area"
access_control:
#- { path: /login, roles: IS_AUTHENTICATED_ANONYMOUSLY,
requires_channel: https }
- { path: /admin/.*, role: ROLE_ADMIN }
- { path: /.*, role: IS_AUTHENTICATED_ANONYMOUSLY }
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
