restrict admin access to ROLE_ADMIN

2021-04-30 21:24:51 +02:00 · 2021-04-30 21:24:51 +02:00 · 1effd26ee9
commit 1effd26ee9
parent eba1194686
1 changed files with 2 additions and 1 deletions
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@ -36,4 +36,5 @@ security:
    # Note: Only the *first* access control that matches will be used
    access_control:
        # - { path: ^/admin, roles: ROLE_ADMIN }
-        - { path: ^(?!/(login|register|reset-password)), roles: ROLE_USER }
+        - { path: ^/admin, roles: ROLE_ADMIN }
+        - { path: ^(?!/(login|register|reset-password)), roles: ROLE_USER }