Using the SecurityBundle in Symfony 6
At SymfonyWorld Winter 2021, I talked about using the new Symfony authentication system in your applications in Symfony 6. We discussed the important changes to the Security component, what we tried to improve with each change, and how you can use these to make a more secure application quicker.
References & Features
- The security makers in Symfony MakerBundle
- Minimalized
UserInterface - SymfonyCasts VerifyEmailBundle and ResetPasswordBundle
- Built-in form login authenticator and json login authenticator (all built-in authenticators)
- The new Security profiler
- LexikJWTAuthenticationBundle, OneloginSamlBundle, WebauthnSymfonyBundle, KnpUOauth2ClientBundle and SchebTwoFactorBundle
- The new Security event cycle
- The new
debug:firewallcommand - Symfony security Passports
- The new
required_badgessetting - Implementing custom authenticators
- Using the new authentication system in Symfony 5
- All code of this talk in an example application: https://github.com/wouterj-nl/security-winterworld21