security:
    password_hashers:
        App\Entity\User\User:
            algorithm: auto

    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: ROLE_ADMIN

    providers:
        admin_auth:
            entity:
                class: App\Entity\User\User
                property: email

    firewalls:
        # Enable for Development
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        main:
            pattern:    ^/
            provider: admin_auth
            lazy: true
            user_checker: Unique\UserBundle\Security\UserChecker
            switch_user: true
            http_basic: ~
            entry_point: form_login
            form_login:
                use_referer: true
                login_path: security_login
                check_path: security_login
                default_target_path: 'admin_dashboard' # Login Redirect Path
                always_use_default_target_path: true #Force to not redirect to api call after login
            logout:
                path: security_logout
                #target: 'home' # Logout Redirect Path
            remember_me:
                secret:   '%env(APP_SECRET)%'
                lifetime: 604800 # 1 week in seconds
                #secure: true
                #always_remember_me: true
                #signature_properties: ['password', 'updatedAt']
                #path:     /

    access_control:
        - { path: ^/auth/login$, role: PUBLIC_ACCESS }
        #- { path: ^/auth/resetting, role: PUBLIC_ACCESS }
        - { path: ^/admin/settings, role: ROLE_SUPER_ADMIN }
        - { path: ^/admin/system/license, role: ROLE_SUPER_ADMIN }
        - { path: ^/admin, role: ROLE_ADMIN }
        - { path: ^/download, role: ROLE_ADMIN }
        - { path: ^/, roles: PUBLIC_ACCESS }