gnu-social/config/packages/security.yaml

security:
    enable_authenticator_manager: true
    password_hashers:
        App\Entity\LocalUser:
            algorithm: auto
    # https://symfony.com/doc/current/security.html#where-do-users-come-from-user-providers
    providers:
        local_user:
            chain:
                providers: [local_user_by_nickname, local_user_by_email]
        local_user_by_nickname:
            entity:
                class: 'App\Entity\LocalUser'
                property: 'nickname'
        local_user_by_email:
            entity:
                class: 'App\Entity\LocalUser'
                property: 'outgoing_email'
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        main:
            entry_point: App\Security\Authenticator
            guard:
              authenticators:
                - App\Security\Authenticator
            provider: local_user
            form_login:
                login_path: security_login
                check_path: security_login
                enable_csrf: true
            logout:
                path: security_logout
                # where to redirect after logout
                target: root

            remember_me:
                secret: '%kernel.secret%'
                secure: true
                httponly: '%remember_me_httponly%'
                samesite: '%remember_me_samesite%'
                token_provider: 'Symfony\Bridge\Doctrine\Security\RememberMe\DoctrineTokenProvider'

            # activate different ways to authenticate
            # https://symfony.com/doc/current/security.html#firewalls-authentication

            # https://symfony.com/doc/current/security/impersonating_user.html
            # switch_user: true

    # Easy way to control access for large sections of your site
    # Note: Only the *first* access control that matches will be used
    access_control:
        - { path: ^/admin, roles: ROLE_ADMIN }
        - { path: ^/settings, roles: ROLE_USER }
[V3] Big Bang Beginning anew, this time with a modern framework: symfony 2020-03-10 19:04:22 +00:00			`security:`
[CORE][SECURITY] Move to the new authentication format, for Symfony 5.3 Keep using (deprecated) Guard 2021-11-16 14:48:18 +00:00			`enable_authenticator_manager: true`
			`password_hashers:`
			`App\Entity\LocalUser:`
			`algorithm: auto`
			`# https://symfony.com/doc/current/security.html#where-do-users-come-from-user-providers`
[CORE][SECURITY] Move to the new authentication format, for Symfony 5.3 2021-11-16 14:48:18 +00:00			`providers:`
[SECURITY] Fix nickname validation and properly allow email auth 2021-10-10 17:41:30 +01:00			`local_user:`
			`chain:`
			`providers: [local_user_by_nickname, local_user_by_email]`
			`local_user_by_nickname:`
[LOGIN] Implement password checking and related systems 2020-07-22 12:45:03 +01:00			`entity:`
			`class: 'App\Entity\LocalUser'`
			`property: 'nickname'`
[SECURITY] Fix nickname validation and properly allow email auth 2021-10-10 17:41:30 +01:00			`local_user_by_email:`
			`entity:`
			`class: 'App\Entity\LocalUser'`
[CORE][SECURITY] Move to the new authentication format, for Symfony 5.3 Keep using (deprecated) Guard 2021-11-16 14:48:18 +00:00			`property: 'outgoing_email'`
[V3] Big Bang Beginning anew, this time with a modern framework: symfony 2020-03-10 19:04:22 +00:00			`firewalls:`
			`dev:`
			`pattern: ^/(_(profiler\|wdt)\|css\|images\|js)/`
			`security: false`
			`main:`
[CORE][SECURITY] Move to the new authentication format, for Symfony 5.3 Keep using (deprecated) Guard 2021-11-16 14:48:18 +00:00			`entry_point: App\Security\Authenticator`
[UI][SESSION] Add login and logout pages 2020-07-22 02:58:25 +01:00			`guard:`
[CORE][SECURITY] Move to the new authentication format, for Symfony 5.3 Keep using (deprecated) Guard 2021-11-16 14:48:18 +00:00			`authenticators:`
			`- App\Security\Authenticator`
			`provider: local_user`
			`form_login:`
			`login_path: security_login`
			`check_path: security_login`
			`enable_csrf: true`
[UI][SESSION] Add login and logout pages 2020-07-22 02:58:25 +01:00			`logout:`
[SECURITY] Fix nickname validation and properly allow email auth 2021-10-10 17:41:30 +01:00			`path: security_logout`
[UI][SESSION] Add login and logout pages 2020-07-22 02:58:25 +01:00			`# where to redirect after logout`
[COMPONENT][Feed] Correct queries and introduce new feeds Refactor feeds and search to use a common query builder 2021-12-23 13:27:31 +00:00			`target: root`
[UI][SESSION] Add login and logout pages 2020-07-22 02:58:25 +01:00
			`remember_me:`
			`secret: '%kernel.secret%'`
			`secure: true`
			`httponly: '%remember_me_httponly%'`
			`samesite: '%remember_me_samesite%'`
			`token_provider: 'Symfony\Bridge\Doctrine\Security\RememberMe\DoctrineTokenProvider'`
[V3] Big Bang Beginning anew, this time with a modern framework: symfony 2020-03-10 19:04:22 +00:00
			`# activate different ways to authenticate`
			`# https://symfony.com/doc/current/security.html#firewalls-authentication`

			`# https://symfony.com/doc/current/security/impersonating_user.html`
			`# switch_user: true`

			`# Easy way to control access for large sections of your site`
			`# Note: Only the first access control that matches will be used`
			`access_control:`
[UI][SESSION] Add login and logout pages 2020-07-22 02:58:25 +01:00			`- { path: ^/admin, roles: ROLE_ADMIN }`
			`- { path: ^/settings, roles: ROLE_USER }`