spawntree
/
timetracking
2
0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
24 Commits
1 Branch
538 KiB
 
 
 
 
 
Tag: 019a863400
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 019a863400
${ noResults }
timetracking/httpdocs/config/packages/security.yaml

69 linhas
2.7 KiB
Original Anotar Histórico 

  1. security:

  2.     # https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords

  3.     password_hashers:

  4.         App\Entity\Central\User:

  5.             algorithm: auto

  6. 

  7.     # https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider

  8.     providers:

  9.         app_user_provider:

  10.             entity:

  11.                 class: App\Entity\Central\User

  12.                 property: email

  13.         # users_in_memory: { memory: null }

  14. 

  15.     firewalls:

  16.         dev:

  17.             # Ensure dev tools and static assets are always allowed

  18.             pattern: ^/(_(profiler|wdt)|css|images|js)/

  19.             security: false

  20.         main:

  21.             lazy: true

  22.             user_checker: App\Security\ArchivedUserChecker

  23.             provider: app_user_provider

  24.             access_denied_handler: App\Security\AccessDeniedHandler

  25.             form_login:

  26.                 login_path: app_login

  27.                 check_path: app_login

  28.                 default_target_path: /week

  29.                 username_parameter: email

  30.                 password_parameter: password

  31.                 enable_csrf: true

  32.             logout:

  33.                 path: app_logout

  34.                 target: app_login

  35.             remember_me:

  36.                 secret: '%kernel.secret%'

  37.                 lifetime: 2592000   # 30 Tage

  38.                 path: /

  39.                 name: REMEMBERME

  40. 

  41.             # Activate different ways to authenticate:

  42.             # https://symfony.com/doc/current/security.html#the-firewall

  43. 

  44.             # https://symfony.com/doc/current/security/impersonating_user.html

  45.             # switch_user: true

  46. 

  47.     # Note: Only the *first* matching rule is applied

  48.     access_control:

  49.         - { path: ^/login,               roles: PUBLIC_ACCESS }

  50.         - { path: ^/register,            roles: PUBLIC_ACCESS }

  51.         - { path: ^/api/register,        roles: PUBLIC_ACCESS }

  52.         - { path: ^/verify/,             roles: PUBLIC_ACCESS }

  53.         - { path: ^/invite/,             roles: PUBLIC_ACCESS }

  54.         - { path: ^/forgot-password,   roles: PUBLIC_ACCESS }

  55.         - { path: ^/reset-password/,   roles: PUBLIC_ACCESS }

  56.         - { path: ^/$,                   roles: PUBLIC_ACCESS }

  57.         - { path: ^/,                    roles: ROLE_USER }

  58. 

  59. when@test:

  60.     security:

  61.         password_hashers:

  62.             # Password hashers are resource-intensive by design to ensure security.

  63.             # In tests, it's safe to reduce their cost to improve performance.

  64.             Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:

  65.                 algorithm: auto

  66.                 cost: 4 # Lowest possible value for bcrypt

  67.                 time_cost: 3 # Lowest possible value for argon

  68.                 memory_cost: 10 # Lowest possible value for argon