我已将BorisMorel / LdapBundle版本2.0集成到^/admin区域的Symfony版本2.0.16并且它可以工作,但是有一个问题 - LDAP捆绑包也用于^/api这不是我想要的。 API不应使用LDAP。我认为IS_AUTHENTICATED_ANONYMOUSLY添加^/api作为access_control选项应该会有所帮助,但事实并非如此 - 它正在尝试连接。
security.yml:
security:
firewalls:
restricted_area:
pattern: ^/admin
anonymous: ~
provider: ldap
imag_ldap: ~
form_login:
login_path: /login
check_path: /login_check
logout:
path: /logout
target: /login
providers:
ldap:
id: imag_ldap.security.user.provider
encoders:
IMAG\LdapBundle\User\LdapUser: plaintext
access_control:
- { path: ^/api$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
# - { path: ^/, roles: IS_AUTHENTICATED_FULLY }
factories:
- "%kernel.root_dir%/../src/IMAG/LdapBundle/Resources/config/security_factories.xml"
imag_ldap:
client:
host: foo.bar.com
port: 389
referrals_enabled: 0
version: 3
user:
base_dn: ou=user,dc=bar,dc=com
name_attribute: uid
role:
base_dn: ou=user,dc=bar,dc=com
name_attribute: cn
user_attribute: member
问题:如何根据^/api'关闭'LDAP?