silverstripe-framework/_config/security.yml

54 lines
2.0 KiB
YAML
Raw Permalink Normal View History

---
2017-06-09 05:07:35 +02:00
Name: coreauthentication
---
SilverStripe\Core\Injector\Injector:
SilverStripe\Security\MemberAuthenticator\SessionAuthenticationHandler:
properties:
SessionVariable: loggedInAs
SilverStripe\Security\MemberAuthenticator\CookieAuthenticationHandler:
properties:
TokenCookieName: alc_enc
DeviceCookieName: alc_device
2017-07-21 12:17:18 +02:00
CascadeInTo: '%$SilverStripe\Security\MemberAuthenticator\SessionAuthenticationHandler'
2017-06-09 05:07:35 +02:00
SilverStripe\Security\AuthenticationHandler:
class: SilverStripe\Security\RequestAuthenticationHandler
properties:
Handlers:
2017-07-21 12:17:18 +02:00
session: '%$SilverStripe\Security\MemberAuthenticator\SessionAuthenticationHandler'
alc: '%$SilverStripe\Security\MemberAuthenticator\CookieAuthenticationHandler'
2017-06-09 05:07:35 +02:00
---
Name: coresecurity
After:
2017-09-27 22:15:00 +02:00
- '#requestprocessors'
2017-06-09 05:07:35 +02:00
---
SilverStripe\Core\Injector\Injector:
SilverStripe\Control\Director:
properties:
Middlewares:
2017-07-21 12:17:18 +02:00
AuthenticationMiddleware: '%$SilverStripe\Security\AuthenticationMiddleware'
BasicAuthMiddleware: '%$SilverStripe\Security\BasicAuthMiddleware'
PasswordExpirationMiddleware: '%$SilverStripe\Security\PasswordExpirationMiddleware'
SilverStripe\Security\AuthenticationMiddleware:
2017-06-09 05:07:35 +02:00
properties:
2017-07-21 12:17:18 +02:00
AuthenticationHandler: '%$SilverStripe\Security\AuthenticationHandler'
SilverStripe\Security\BasicAuthMiddleware:
properties:
URLPatterns: []
SilverStripe\Security\Security:
properties:
2017-06-09 05:07:35 +02:00
Authenticators:
2017-07-21 12:17:18 +02:00
default: '%$SilverStripe\Security\MemberAuthenticator\MemberAuthenticator'
SilverStripe\Security\CMSSecurity:
properties:
Authenticators:
2017-07-21 12:17:18 +02:00
cms: '%$SilverStripe\Security\MemberAuthenticator\CMSMemberAuthenticator'
SilverStripe\Security\IdentityStore: '%$SilverStripe\Security\AuthenticationHandler'
SilverStripe\Security\PasswordExpirationMiddleware:
default_redirect: Security/changepassword
whitelisted_url_startswith:
- Security/basicauthlogin/
- Security/changepassword/
- Security/login/
- Security/logout/