Reputation: 31548
Is it possible to secure whole Controller in Symfony 2?
I am using JMSSecurityExtra bundle for securing methods in my contoller.
But is there any way that i can secure the whole controller with @Secure?
Upvotes: 2
Views: 2142
Answers (2)
Reputation: 31548
This can be done as per Documentaion
https://github.com/schmittjoh/JMSSecurityExtraBundle/issues/50
Tip: If you like to secure all actions of the controller with the same rule, you may also specify @PreAuthorize on the class itself. Caution though, this rule is only applied to the methods which are declared in the class.
use JMS\SecurityExtraBundle\Annotation\PreAuthorize;
/** @PreAuthorize("hasRole('A') or (hasRole('B') and hasRole('C'))") */
class MyService
{
public function secureMethod()
{
// ...
}
}
Upvotes: 6
Reputation: 7745
This annotation can only be applied to methods.
You could do it like this though (it's a regex):
jms_security_extra:
method_access_control:
'AcmeDemoBundle:AdminController:.*Action': 'hasRole("ROLE_ADMIN")'
Read the documentation: http://jmsyst.com/bundles/JMSSecurityExtraBundle/master/method_security_authorization
Upvotes: 1
Related Questions
- Symfony Diem: how to secure whole frontend?
- how to best secure controllers actions and display different content symfony2
- Symfony2 secure whole controller
- Security In Symfony2?
- Symfony2, How to secure all controllers in one place using custom function?
- Security in Symfony2
- Secure area in Symfony2
- How to Secure an SOA style Symfony2 Application
- Symfony 2 CRUD: Is there a standard way to auto-secure the generated controllers?
- Securing a whole Controller in Symfony with sfGuard?