{% extends '@WebProfiler/Profiler/layout.html.twig' %} {% block page_title 'Security' %} {% block head %} {{ parent() }} {% endblock %} {% block toolbar %} {% if collector.firewall %} {% set icon %} {{ source('@Security/Collector/icon.svg') }} {{ collector.user|default('n/a') }} {% endset %} {% set text %} {% if collector.impersonated %}
Impersonator {{ collector.impersonatorUser }}
{% endif %}
{% if collector.enabled %} {% if collector.token %}
Logged in as {{ collector.user }}
Authenticated {{ collector.authenticated ? 'Yes' : 'No' }}
Roles {% set remainingRoles = collector.roles|slice(1) %} {{ collector.roles|first }} {% if remainingRoles is not empty %} + {{ remainingRoles|length }} more {% endif %}
{% if collector.supportsRoleHierarchy %}
Inherited Roles {% if collector.inheritedRoles is empty %} none {% else %} {% set remainingRoles = collector.inheritedRoles|slice(1) %} {{ collector.inheritedRoles|first }} {% if remainingRoles is not empty %} + {{ remainingRoles|length }} more {% endif %} {% endif %}
{% endif %}
Token class {{ collector.tokenClass|abbr_class }}
{% else %}
Authenticated No
{% endif %} {% if collector.firewall %}
Firewall name {{ collector.firewall.name }}
{% endif %} {% if collector.token and collector.logoutUrl %}
Actions Logout {% if collector.impersonated and collector.impersonationExitPath %} | Exit impersonation {% endif %}
{% endif %} {% else %}
The security is disabled.
{% endif %}
{% endset %} {{ include('@WebProfiler/Profiler/toolbar_item.html.twig', { link: profiler_url }) }} {% endif %} {% endblock %} {% block menu %} {{ source('@Security/Collector/icon.svg') }} Security {% endblock %} {% block panel %}

Security

{% if collector.enabled %}

Token

{% if collector.token %}
{{ collector.user }} Username
{{ source('@WebProfiler/Icon/' ~ (collector.authenticated ? 'yes' : 'no') ~ '.svg') }} Authenticated
{% if collector.authProfileToken %}
{{- collector.authProfileToken -}} From
{% endif %}
{% if collector.supportsRoleHierarchy %} {% endif %} {% if collector.token %} {% endif %}
Property Value
Roles {{ collector.roles is empty ? 'none' : profiler_dump(collector.roles, maxDepth=1) }} {% if not collector.authenticated and collector.roles is empty %}

User is not authenticated probably because they have no roles.

{% endif %}
Inherited Roles {{ collector.inheritedRoles is empty ? 'none' : profiler_dump(collector.inheritedRoles, maxDepth=1) }}
Token {{ profiler_dump(collector.token) }}
{% elseif collector.enabled %}

There is no security token. {% if collector.deauthProfileToken %} It was removed in {{- collector.deauthProfileToken -}} . {% endif %}

{% endif %}

Firewall

{% if collector.firewall %}
{{ collector.firewall.name }} Name
{{ source('@WebProfiler/Icon/' ~ (collector.firewall.security_enabled ? 'yes' : 'no') ~ '.svg') }} Security enabled
{{ source('@WebProfiler/Icon/' ~ (collector.firewall.stateless ? 'yes' : 'no') ~ '.svg') }} Stateless
{% if collector.firewall.security_enabled %}

Configuration

Key Value
provider {{ collector.firewall.provider ?: '(none)' }}
context {{ collector.firewall.context ?: '(none)' }}
entry_point {{ collector.firewall.entry_point ?: '(none)' }}
user_checker {{ collector.firewall.user_checker ?: '(none)' }}
access_denied_handler {{ collector.firewall.access_denied_handler ?: '(none)' }}
access_denied_url {{ collector.firewall.access_denied_url ?: '(none)' }}
authenticators {{ collector.firewall.authenticators is empty ? '(none)' : profiler_dump(collector.firewall.authenticators, maxDepth=1) }}
{% endif %} {% endif %}

Listeners

{% if collector.listeners|default([]) is empty %}

No security listeners have been recorded. Check that debugging is enabled in the kernel.

{% else %} {% set previous_event = (collector.listeners|first) %} {% for listener in collector.listeners %} {% if loop.first or listener != previous_event %} {% if not loop.first %} {% endif %} {% set previous_event = listener %} {% endif %} {% if loop.last %} {% endif %} {% endfor %}
Listener Duration Response
{{ profiler_dump(listener.stub) }} {{ listener.time is null ? '(none)' : '%0.2f ms'|format(listener.time * 1000) }} {{ listener.response ? profiler_dump(listener.response) : '(none)' }}
{% endif %}

Authenticators

{% if collector.authenticators|default([]) is not empty %} {% for i, authenticator in collector.authenticators %} {% endfor %}
Status Authenticator
{% if authenticator.authenticated %} {% set status_text, label_status = 'success', 'success' %} {% elseif authenticator.authenticated is null %} {% set status_text, label_status = 'skipped', false %} {% else %} {% set status_text, label_status = 'failure', 'error' %} {% endif %} {{ status_text }} {{ profiler_dump(authenticator.stub) }}
{% if authenticator.supports is same as(false) %}

This authenticator did not support the request.

{% elseif authenticator.authenticated is null %}

An authenticator ran before this one.

{% else %} {% if authenticator.passport %} {% endif %} {% if authenticator.badges %} {% endif %} {% if authenticator.exception %} {% endif %}
Lazy {{ authenticator.supports is null ? 'yes' : 'no' }}
Duration {{ '%0.2f ms'|format(authenticator.duration * 1000) }}
Passport {{ profiler_dump(authenticator.passport) }}
Badges {% for badge in authenticator.badges %} {{ badge.stub|abbr_class }} {% endfor %}
Exception {{ profiler_dump(authenticator.exception) }}
{% endif %}
{% else %}

No authenticators have been recorded. Check previous profiles on your authentication endpoint.

{% endif %}

Access Decision

{% if collector.voters|default([]) is not empty %}
{{ collector.voterStrategy|default('unknown') }} Strategy
{% for voter in collector.voters %} {% endfor %}
# Voter class
{{ loop.index }} {{ profiler_dump(voter) }}
{% endif %} {% if collector.accessDecisionLog|default([]) is not empty %}

Access decision log

{% for decision in collector.accessDecisionLog %} {% endfor %}
# Result Attributes Object
{{ loop.index }} {% set result = decision.result|default(null) %} {% if result is same as(true) %} GRANTED {% elseif result is same as(false) %} DENIED {% else %} ERROR {% endif %} {% if decision.attributes|length == 1 %} {% set attribute = decision.attributes|first %} {% if attribute.expression is defined %} Expression: 
{{ attribute.expression }}
{% elseif attribute.type == 'string' %} {{ attribute }} {% else %} {{ profiler_dump(attribute) }} {% endif %} {% else %} {{ profiler_dump(decision.attributes) }} {% endif %} 		{{ profiler_dump(decision.seek('object')) }}
{% if decision.voter_details is not empty %} {% set voter_details_id = 'voter-details-' ~ loop.index %}
{% for voter_detail in decision.voter_details %} {% if collector.voterStrategy == 'unanimous' %} {% endif %} {% endfor %}
{{ profiler_dump(voter_detail['class']) }}attribute {{ voter_detail['attributes'][0] }} {% if voter_detail['vote'] == constant('Symfony\\Component\\Security\\Core\\Authorization\\Voter\\VoterInterface::ACCESS_GRANTED') %} GRANTED {% elseif voter_detail['vote'] == constant('Symfony\\Component\\Security\\Core\\Authorization\\Voter\\VoterInterface::ACCESS_ABSTAIN') %} ABSTAIN {% elseif voter_detail['vote'] == constant('Symfony\\Component\\Security\\Core\\Authorization\\Voter\\VoterInterface::ACCESS_DENIED') %} DENIED {% else %} unknown ({{ voter_detail['vote'] }}) {% endif %} {% if voter_detail['reasons'] is not empty %} {% for voter_reason in voter_detail['reasons'] %}
{{ voter_reason }} {% endfor %} {% endif %}
Show voter details {% endif %}
{% endif %}
{% endif %} {% endblock %}