From 806573a2f9683fd1e7b460e5c4eb1a48f1ef40a4 Mon Sep 17 00:00:00 2001 From: Thomas Landauer Date: Sat, 4 Feb 2023 14:46:54 +0100 Subject: [PATCH] Merging two paragraphs Page: https://symfony.com/doc/5.4/security.html#frequently-asked-questions * The second one mainly repeated the first one; there was only 1 sentence really new, so I merged them. * I removed the part that multiple firewalls are usually not needed. Reason: "Each firewall is like a separate security system" says it all. --- security.rst | 18 ++++++------------ 1 file changed, 6 insertions(+), 12 deletions(-) diff --git a/security.rst b/security.rst index 924bbecd58e..23d553e0909 100644 --- a/security.rst +++ b/security.rst @@ -2661,18 +2661,12 @@ Frequently Asked Questions -------------------------- **Can I have Multiple Firewalls?** - Yes! But it's usually not necessary. Each firewall is like a separate security - system, being authenticated in one firewall doesn't make you authenticated in - another one. One firewall can have multiple diverse ways of allowing - authentication (e.g. form login, API key authentication and LDAP). - -**Can I Share Authentication Between Firewalls?** - Yes, but only with some configuration. If you're using multiple firewalls and - you authenticate against one firewall, you will *not* be authenticated against - any other firewalls automatically. Different firewalls are like different security - systems. To do this you have to explicitly specify the same - :ref:`reference-security-firewall-context` for different firewalls. However, - one main firewall is usually sufficient for the needs of most applications. + Yes! Each firewall is like a separate security system, being authenticated in one + firewall doesn't make you authenticated in another one. Each firewall can have + multiple ways of allowing authentication (e.g. form login, and API key authentication). + If you want to share authentication between firewalls, + you have to explicitly specify the same + :ref:`reference-security-firewall-context` for different firewalls. **Security doesn't seem to work on my Error Pages** As routing is done *before* security, 404 error pages are not covered by