security.yml 1.5 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647
  1. security:
  2. providers:
  3. oauth:
  4. id: base_oauth_bundle.oauth_user_provider
  5. oauth_proxy_provider:
  6. id: base_oauth_bundle.oauth_user_provider
  7. # base_oauthclient_security_oauthproxyprovider
  8. role_hierarchy:
  9. ROLE_ADMIN: [ROLE_USER, ROLE_ALLOWED_TO_SWITCH]
  10. ROLE_SUPER_ADMIN: ROLE_ADMIN
  11. firewalls:
  12. dev:
  13. pattern: ^/(_(profiler|wdt)|css|images|js)/
  14. security: false
  15. api:
  16. pattern: ^/api
  17. stateless: true
  18. simple_preauth:
  19. authenticator: base_oauthclient_security_oauthproxyauthenticator
  20. provider: oauth_proxy_provider
  21. secured_area:
  22. pattern: ^/
  23. logout:
  24. path: /logout
  25. target: /
  26. success_handler: base_admin.security.logout.handler
  27. anonymous: true
  28. # HWIOAuthBundle + BaseOAuthBundle Configuration
  29. oauth:
  30. login_path: /login
  31. failure_path: /login
  32. check_path: /login
  33. resource_owners:
  34. login: /login_check
  35. oauth_user_provider:
  36. service: base_oauth_bundle.oauth_user_provider
  37. access_control:
  38. - { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
  39. - { path: ^/admin/, role: ROLE_ADMIN }
  40. - { path: ^/api/, role: ROLE_ADMIN}