bethoulevj
eaeabed512
ajout des Roles + access denied, remplacement du Modal Compte par une vu et un controlleur appeler en AJAX directement dans Index, mise en place du Update pour les utilisateurs, optimisation de certaine partis
54 lines
1.9 KiB
YAML
54 lines
1.9 KiB
YAML
security:
|
|
# https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
|
|
password_hashers:
|
|
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
|
|
providers:
|
|
app_user_provider:
|
|
entity:
|
|
class: App\Entity\Utilisateurs
|
|
property: Mail
|
|
|
|
firewalls:
|
|
dev:
|
|
pattern: ^/(_(profiler|wdt)|css|images|js)/
|
|
security: false
|
|
main:
|
|
lazy: true
|
|
provider: app_user_provider
|
|
form_login:
|
|
login_path: app_login
|
|
check_path: app_login
|
|
custom_authenticator: App\Security\LoginAuthenticator
|
|
entry_point: App\Security\LoginAuthenticator
|
|
|
|
logout:
|
|
path: app_logout
|
|
target: app_login
|
|
|
|
|
|
|
|
|
|
|
|
role_hierarchy:
|
|
ROLE_SUPER_ADMIN: [ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]
|
|
|
|
access_control:
|
|
# - { path: ^/, roles: ROLE_USER }
|
|
- { path: ^/login, roles: PUBLIC_ACCESS }
|
|
- { path: ^/logout, roles: ROLE_USER }
|
|
- { path: ^/index, roles: ROLE_ADMIN }
|
|
- { path: ^/user, roles: ROLE_ADMIN }
|
|
|
|
#when@test:
|
|
# security:
|
|
# password_hashers:
|
|
# # By default, password hashers are resource intensive and take time. This is
|
|
# # important to generate secure password hashes. In tests however, secure hashes
|
|
# # are not important, waste resources and increase test times. The following
|
|
# # reduces the work factor to the lowest possible values.
|
|
# Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
|
|
# algorithm: auto
|
|
# cost: 4 # Lowest possible value for bcrypt
|
|
# time_cost: 3 # Lowest possible value for argon
|
|
# memory_cost: 10 # Lowest possible value for argon
|