summary |
shortlog |
log |
commit | commitdiff |
tree
raw |
patch |
inline | side by side (from parent 1:
4b4eed4)
Migrate from bcrypt and plaintext to sodium
headers:
X-Originating-IP: '%env(REMOTE_ADDR)%'
secret: '%env(APP_SECRET)%'
headers:
X-Originating-IP: '%env(REMOTE_ADDR)%'
secret: '%env(APP_SECRET)%'
session:
enabled: true
handler_id: ~
session:
enabled: true
handler_id: ~
#XXX: comment this key in config/security.yaml to prevent users_in_memory induced failures
#TODO: see https://symfony.com/doc/current/security/passwords.html (sodium ? + upgrade)
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
#XXX: comment this key in config/security.yaml to prevent users_in_memory induced failures
#TODO: see https://symfony.com/doc/current/security/passwords.html (sodium ? + upgrade)
Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
+ #Rapsys\BlogBundle\Entity\User:
+ algorithm: 'sodium'
- 'plaintext'
# Set providers
- 'plaintext'
# Set providers
# Password parameter
password_parameter: 'login[password]'
# Enable login csrf protection
# Password parameter
password_parameter: 'login[password]'
# Enable login csrf protection
- #TODO: enable in framework now that it works here ?
enable_csrf: false
# Csrf parameter
csrf_parameter: 'login[_token]'
enable_csrf: false
# Csrf parameter
csrf_parameter: 'login[_token]'