jblac · March 12, 2013 03:49
diff --git a/security.yml b/security.yml
 jms_security_extra:
    secure_all_services: false
    expressions: true

 security:
    encoders:
        Symfony\Component\Security\Core\User\User: plaintext
        FOS\UserBundle\Model\UserInterface: sha512

    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]

    providers:
        fos_userbundle:
            id: fos_user.user_provider.username
        in_memory:
            memory:
                users:
                    user:  { password: userpass, roles: [ 'ROLE_USER' ] }
                    admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }

    firewalls:
        dev:
            pattern:  ^/(_(profiler|wdt)|css|images|js)/
            security: false
        main:
            pattern:  ^/admin/
            switch_user: true
            form_login:
                check_path: /admin/login_check
                login_path: /admin/login
                provider: fos_userbundle
            anonymous: true
            logout:
                path:   /admin/logout
                target: /admin/
                
            #anonymous: ~
            #http_basic:
            #    realm: "Secured Demo Area"

    access_control:
            - { path: ^/admin/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
            - { path: ^/admin/, role: ROLE_USER }
            - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
            - { path: ^/, role: ROLE_USER }
        #- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
        #
        # You must uncomment the two following rules to restrict access to paths
        # starting with the /_internal prefix to only localhost
        #- { path: ^/_internal/secure, roles: IS_AUTHENTICATED_ANONYMOUSLY, ip: 127.0.0.1 }
        #- { path: ^/_internal/secure, roles: ROLE_NO_ACCESS }
	jms_security_extra:
	secure_all_services: false
	expressions: true

	security:
	encoders:
	Symfony\Component\Security\Core\User\User: plaintext
	FOS\UserBundle\Model\UserInterface: sha512

	role_hierarchy:
	ROLE_ADMIN: ROLE_USER
	ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]

	providers:
	fos_userbundle:
	id: fos_user.user_provider.username
	in_memory:
	memory:
	users:
	user: { password: userpass, roles: [ 'ROLE_USER' ] }
	admin: { password: adminpass, roles: [ 'ROLE_ADMIN' ] }

	firewalls:
	dev:
	pattern: ^/(_(profiler\|wdt)\|css\|images\|js)/
	security: false
	main:
	pattern: ^/admin/
	switch_user: true
	form_login:
	check_path: /admin/login_check
	login_path: /admin/login
	provider: fos_userbundle
	anonymous: true
	logout:
	path: /admin/logout
	target: /admin/

	#anonymous: ~
	#http_basic:
	# realm: "Secured Demo Area"

	access_control:
	- { path: ^/admin/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
	- { path: ^/admin/, role: ROLE_USER }
	- { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
	- { path: ^/, role: ROLE_USER }
	#- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
	#
	# You must uncomment the two following rules to restrict access to paths
	# starting with the /_internal prefix to only localhost
	#- { path: ^/_internal/secure, roles: IS_AUTHENTICATED_ANONYMOUSLY, ip: 127.0.0.1 }
	#- { path: ^/_internal/secure, roles: ROLE_NO_ACCESS }