security.yml (2044B)
1 security: 2 encoders: 3 Symfony\Component\Security\Core\User\User: 4 algorithm: sha512 5 iterations: 1 6 FOS\UserBundle\Model\UserInterface: 7 algorithm: sha512 8 iterations: 1 9 PartKeepr\AuthBundle\Entity\User: 10 algorithm: md5 11 iterations: 1 12 encode_as_base64: false 13 14 role_hierarchy: 15 ROLE_ADMIN: ROLE_USER 16 ROLE_SUPER_ADMIN: ROLE_ADMIN 17 18 providers: 19 chain_provider: 20 chain: 21 providers: [in_memory, fos_userbundle, fr3d_ldapbundle, legacy] 22 legacy: 23 id: partkeepr_legacy_user_provider 24 in_memory: 25 memory: ~ 26 fos_userbundle: 27 id: fos_user.user_provider.username 28 fr3d_ldapbundle: 29 id: fr3d_ldap.security.user.provider 30 31 firewalls: 32 login: 33 pattern: ^/api/users/getSalt 34 security: false 35 main: 36 stateless: false # Stores authentification within a cookie. This is important to allow file uploads without having to send authentification data. 37 pattern: ^/api/.* 38 provider: chain_provider 39 fr3d_ldap_httpbasic: 40 provider: chain_provider 41 http_basic: 42 provider: chain_provider 43 remote_user: 44 provider: chain_provider 45 wsse: 46 realm: "Secured with WSSE" #identifies the set of resources to which the authentication information will apply (WWW-Authenticate) 47 profile: "UsernameToken" #WSSE profile (WWW-Authenticate) 48 encoder: #digest algorithm 49 algorithm: sha512 50 encodeHashAsBase64: true 51 iterations: 1 52 53 access_control: 54 - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY } 55 - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY } 56 - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY } 57 - { path: ^/admin/, role: ROLE_ADMIN }