nmcilree
Reputation: 566
Symfony granting path access to multiple roles in security.yml
Hi I would like to be able to allow access to a path in security.yml based on the user either having ROLE_TEACHER, or ROLE_ADMIN.
According to the question in Multiple roles required for same url in symfony 2 the entry below should allow either role access.
- { path: ^/admin, roles: ROLE_ADMIN}
- { path: ^/admin, roles: ROLE_TEACHER}
However, this will only allow the top role access. Is there a way of having multiple role access to a single path?
Upvotes: 36
Views: 29700
Answers (2)
Serge Kvashnin
Reputation: 4491
You can use the role hierarchy in security.yml:
role_hierarchy:
ROLE_ADMIN: [ROLE_TEACHER]
#...
access_control:
- { path: ^/admin, roles: ROLE_TEACHER}
So all of this roles will have access to that path.
Upvotes: 18
Udan
Reputation: 5599
This is the way to go and what i'm using:
- { path: ^/admin, roles: [ROLE_ADMIN, ROLE_TEACHER] }
Upvotes: 96
Related Questions
- Symfony security access_control allow if NOT having specific role
- Symfony access control by roles
- How to get dynamic security privileges with Symfony Security
- Assigning roles to paths dynamically in symfony2
- Symfony2 access control with multiple role requirement
- Symfony2: security.yml: how can i have two rules for one path
- symfony2 security roles
- How to secure routes in Symfony using security.yml
- Symfony access_control by role
- Symfony security roles