堆栈内存溢出
  简体   繁体   English

我在symfony2的security.yml中需要两个防火墙吗

[英]Do i need two firewalls in security.yml in symfony2

 原文  2012-01-16 17:52:50       php/ symfony

问题描述

I have this security.yml file. 我有这个security.yml文件。 I want to know do i need two firewalls or one is ok. 我想知道我需要两个防火墙还是一个可以。 I have read in docs that one firewall is ok and use ACL for further things. 我在文档中已经读到,一个防火墙是可以的,并使用ACL进行其他操作。 

firewalls:


        admin:
            pattern:      /admin(.*)
            form_login:
                provider:       fos_userbundle
                login_path:     /admin/login
                use_forward:    false
                check_path:     /admin/login_check
                failure_path:   /admin/login
                use_referer:    true
                default_target_path: /admin/dashboard                
            logout:
                path:           /admin/logout
                target:         /admin/login

            anonymous:    true

        main:
            pattern:      .*
            form-login:
                provider:       fos_userbundle
                login_path:     /login
                use_forward:    false
                check_path:     /login_check
                failure_path:   null
                default_target_path: /main 
            logout:       true
            anonymous:    true

2 个解决方案

解决方案1
 0  2012-01-16 18:14:36

You have two entry points: /login and /admin/login . 您有两个入口点: /login/admin/login If you can make do with one, then you could merge down to one firewall. 如果可以使用一个防火墙,则可以合并到一个防火墙。

解决方案2
 0 已采纳  2012-01-16 18:15:41

Yes, you will need two. 是的,您将需要两个。 One firewall protects secure pages, the second firewall allows anonymous access to open pages, which you need to open up at least for your login page (see the common pitfalls section of the security documentation ). 一个防火墙保护安全页面,第二个防火墙允许匿名访问打开的页面,至少您需要为登录页面打开这些页面(请参阅安全文档的常见陷阱部分)。

You will probably want to add paths to the second firewall for home, password recovery, and any other pages you want anyone to be able to access. 您可能希望将路径添加到第二个防火墙,以进行家庭,密码恢复以及您希望任何人都可以访问的任何其他页面。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何检查symfony2中的用户角色,以查找不属于模式定义的security.yml的URL? - How do I check for user role in symfony2 for urls not falling under patterns defined security.yml? security.yml中的Symfony2错误 - Symfony2 error in security.yml 如何在Phalcon项目中配置Symfony security.yml? - How do I configure Symfony security.yml in phalcon project? 如何在security.yml中使用PUGXMultiUserBundle设置防火墙 - How to setup firewalls with PUGXMultiUserBundle in security.yml Symfony2:用户从数据库登录-security.yml错误 - Symfony2: User Login from Database - Error in security.yml Symfony2 - security.yml中`anonymous.key`的用途 - Symfony2 - Purpose of `anonymous.key` in security.yml 在旧版用户的symfony2 security.yml中使用MD5 - Using MD5 in symfony2 security.yml for legacy users 将部分参数传递给security.yml-Symfony2 - Pass in part of a parameter into security.yml - Symfony2 Symfony上的security.yml问题 - Problems with security.yml on symfony Symfony security.yml在“ security.firewalls.secured_area.ldapsecure”下无法识别的选项“ check_path,login_path,提供程序” - Symfony security.yml Unrecognized options “check_path, login_path, provider” under “security.firewalls.secured_area.ldapsecure”
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM