jms_security_extra:
    secure_all_services: false
    expressions: true

security:
    encoders:
        Symfony\Component\Security\Core\User\User: plaintext

    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_USER, ROLE_ADMIN, ROLE_ALLOWED_TO_SWITCH]

    providers:
        in_memory:
            memory:
                users:
                    alexzb:  { password: d559ko54, roles: [ 'ROLE_ADMIN' ] }
                    alexl: { password: d559ko54, roles: [ 'ROLE_ADMIN' ] }
                    ghuntley:  { password: d559ko54, roles: [ 'ROLE_ADMIN' ] }

    firewalls:
        dev:
            pattern:  ^/(_(profiler|wdt)|css|images|js)/
            security: false

        login:
            pattern:  ^/m/login$
            security: false

        landing:
            pattern:  ^/$
            security: false

        contact:
            pattern:  ^/contact$
            security: false

        secured_area:
            pattern:    ^/
            form_login:
                check_path: /m/login_check
                login_path: /m/login
            logout:
                path:   /m/logout
                target: /

    access_control:
        #- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY, requires_channel: https }
        #- { path: ^/_internal/secure, roles: IS_AUTHENTICATED_ANONYMOUSLY, ip: 127.0.0.1 }