tom32i/simple-security-bundle

用户认证的简单安全包

维护者

详细信息

github.com/Tom32i/SimpleSecurityBundle

主页

源代码

问题

安装: 233

依赖项: 0

建议者: 0

安全: 0

星标: 0

关注者: 6

分支: 0

开放问题: 4

类型:symfony-bundle

v0.4.4 2015-05-18 12:12 UTC

Requires

MIT afec63197d69ce636294dfaf7adb7f24c06e3171

securityAuthenticationuser

This package is auto-updated.

Last update: 2024-08-27 20:34:38 UTC

README

用户认证的简单安全包

安装

安装包

####将包添加到composer

php composer.phar require tom32i/simple-security-bundle

app/AppKernel.php 中注册包

$bundles = array(
    new Tom32i\Bundle\SimpleSecurityBundle\Tom32iSimpleSecurityBundle(),
);

app/config/routing.yml 中添加路由

login_check:
    pattern:   /login-check

logout:
    pattern:   /logout

simple_security:
    resource: "@Tom32iSimpleSecurityBundle/Controller/"
    type:     annotation
    prefix:   /

创建自定义用户类

继承 Tom32i\Bundle\SimpleSecurityBundle\Entity\User.

<?php

namespace Acme\DemoBundle\Entity;

use Doctrine\ORM\Mapping as ORM;
use Symfony\Component\Validator\Constraints as Assert;
use Tom32i\Bundle\SimpleSecurityBundle\Entity\User as SimpleSecurityUser;

/**
 * User
 *
 * @ORM\Table
 * @ORM\Entity
 */
class User extends SimpleSecurityUser
{
    const ROLE_USER  = 'ROLE_USER';

    /**
     * Constructor
     */
    public function __construct()
    {
        parent::__construct();

        $this->addRole(static::ROLE_USER);
    }
    
    /**
     * Get available roles (used for validation)
     *
     * @return array    
     */
    static public function getAvailableRoles()
    {
        return [static::ROLE_USER];
    }
}

配置安全

为自定义用户类 Acme\DemoBundle\Entity\User 配置编码器和提供者

security:
    encoders:
    	# Choose an encoder for your User class:    
        Acme\DemoBundle\Entity\User: sha512

    providers:
        default:
            entity:
            	# Register your entity as an User provider:
                class:    Acme\DemoBundle\Entity\User
                property: username

    firewalls:
        default:
            pattern:    ^/
            form_login:
                login_path: /login
                check_path: /login-check
                # Set the credentials parameters to match the Login form:
                username_parameter: "login[username]"
                password_parameter: "login[password]"
            logout:
                path:   /logout
            anonymous: true
            remember_me:
                key:      "%secret%"
                lifetime: 31536000
                path:     /
                domain:   ~
                # ... and the "Remember me" parameter as well:
                remember_me_parameter: "login[remember_me]"
                
    access_control:
    	# Allow anonymous users to access login, register and forgot password routes:
        - { path: ^/(login|register|forgot-password), roles: IS_AUTHENTICATED_ANONYMOUSLY }