wallabag/app/config/security.yml

59 lines
1.8 KiB
YAML
Raw Normal View History

2015-01-22 07:30:07 +00:00
security:
encoders:
2015-01-31 14:14:10 +00:00
Wallabag\CoreBundle\Entity\Users:
algorithm: sha1
encode_as_base64: false
iterations: 1
2015-01-22 07:30:07 +00:00
role_hierarchy:
ROLE_ADMIN: ROLE_USER
2015-01-31 14:14:10 +00:00
ROLE_SUPER_ADMIN: [ ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH ]
2015-01-22 07:30:07 +00:00
providers:
2015-01-31 14:14:10 +00:00
administrators:
entity: { class: WallabagCoreBundle:Users, property: username }
2015-01-22 07:30:07 +00:00
# the main part of the security, where you can set up firewalls
# for specific sections of your app
firewalls:
2015-01-31 14:14:10 +00:00
#wsse_secured:
# pattern: /api/.*
# wsse: true
login_firewall:
pattern: ^/login$
anonymous: ~
secured_area:
pattern: ^/
anonymous: ~
2015-01-22 07:30:07 +00:00
form_login:
2015-01-31 14:14:10 +00:00
login_path: /login
use_forward: false
check_path: /login_check
post_only: true
always_use_default_target_path: true
default_target_path: /
target_path_parameter: redirect_url
use_referer: true
failure_path: null
failure_forward: false
username_parameter: _username
password_parameter: _password
csrf_parameter: _csrf_token
intention: authenticate
2015-01-22 07:30:07 +00:00
logout:
2015-01-31 14:14:10 +00:00
path: /logout
target: /
2015-01-22 07:30:07 +00:00
access_control:
2015-01-31 14:14:10 +00:00
- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/, roles: ROLE_USER }