Le 06/06/2011 16:57, Javier Garcia a écrit :
Hi,
in the section of security of the sf2's manual there is this
configuration:
security:
firewalls:
secured_area:
pattern: ^/
anonymous: ~
http_basic:
realm: "Secured Demo Area"
access_control:
- { path: ^/admin, roles: ROLE_ADMIN }
providers:
in_memory:
users:
ryan: { password: ryanpass, roles: 'ROLE_USER' }
admin: { password: kitten, roles: 'ROLE_ADMIN' }
encoders:
Symfony\Component\Security\Core\User\User: plaintext
And about that configuration is written this:
"Any URL matching /admin/* is secured, and only the admin user can
access it;"
but..where is that define exactly?
This is defined in the access_control section which requires having the
ROLe_ADMIN role to access all url starting by /admin (and the provider
section tells you that the admin user has this role).
Second question: can someone explain me about what is exactly
"anonymous" parameter?
The anonymous parameter allows user to be anonymous when accesssing the
site instead of always requiring to be logged.
Regards
Javi
--
Christophe | Stof
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
