wip-feat: reduces env vars, adds getting-started page

2025-05-15 23:25:12 -05:00
parent ce6fda257b
commit 5d5d66bd79
22 changed files with 500 additions and 62 deletions
--- a/config/dist/ldap.security.yaml
+++ b/config/dist/ldap.security.yaml
@@ -38,6 +38,7 @@ security:
    # Easy way to control access for large sections of your site
    # Note: Only the *first* access control that matches will be used
    access_control:
+        - { path: ^/getting-started, roles: PUBLIC_ACCESS }
        - { path: ^/register, roles: PUBLIC_ACCESS }
        - { path: ^/login, roles: PUBLIC_ACCESS }
        - { path: ^/, roles: ROLE_USER } # Or ROLE_ADMIN, ROLE_SUPER_ADMIN,
--- a/config/dist/local.security.yaml
+++ b/config/dist/local.security.yaml
@@ -36,6 +36,7 @@ security:
    # Easy way to control access for large sections of your site
    # Note: Only the *first* access control that matches will be used
    access_control:
+        - { path: ^/getting-started, roles: PUBLIC_ACCESS }
        - { path: ^/register, roles: PUBLIC_ACCESS }
        - { path: ^/login, roles: PUBLIC_ACCESS }
        - { path: ^/, roles: ROLE_USER } # Or ROLE_ADMIN, ROLE_SUPER_ADMIN,
--- a/config/packages/mercure.yaml
+++ b/config/packages/mercure.yaml
@@ -1,8 +1,8 @@
 mercure:
    hubs:
        default:
-            url: '%env(MERCURE_URL)%'
-            public_url: '%env(MERCURE_PUBLIC_URL)%'
+            url: '%app.mercure.url%'
+            public_url: '%app.mercure.public_url%'
            jwt:
                secret: '%env(MERCURE_JWT_SECRET)%'
                publish: '*'
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@@ -19,13 +19,11 @@ security:
            security: false
        main:
            lazy: true
-            provider: app_ldap
-            form_login_ldap:
+            provider: app_local
+            form_login:
                login_path: app_login
                check_path: app_login
                enable_csrf: true
-                service: Symfony\Component\Ldap\Ldap
-                dn_string: '%env(LDAP_DN_STRING)%'
            logout:
                path: app_logout

@@ -38,6 +36,7 @@ security:
    # Easy way to control access for large sections of your site
    # Note: Only the *first* access control that matches will be used
    access_control:
+        - { path: ^/getting-started, roles: PUBLIC_ACCESS }
        - { path: ^/register, roles: PUBLIC_ACCESS }
        - { path: ^/login, roles: PUBLIC_ACCESS }
        - { path: ^/, roles: ROLE_USER } # Or ROLE_ADMIN, ROLE_SUPER_ADMIN,
--- a/config/services.yaml
+++ b/config/services.yaml
@@ -9,6 +9,9 @@ parameters:
    media.movies_path: '/var/download/%env(default:media.default_movies_dir:MOVIES_PATH)%'
    media.tvshows_path: '/var/download/%env(default:media.default_tvshows_dir:TVSHOWS_PATH)%'

+    app.mercure.url: 'http://mercure/.well-known/mercure'
+    app.mercure.public_url: '%env(APP_URL)%/hub/.well-known/mercure'
+
 services:
    # default configuration for services in *this* file
    _defaults:
@@ -36,6 +39,7 @@ services:
    # LDAP
    App\User\Framework\Security\LdapUserProvider:
        arguments:
+            $registerLdapUserHandler: '@App\User\Action\Handler\RegisterLdapUserHandler'
            $userRepository: '@App\User\Framework\Repository\UserRepository'
            $ldap: '@Symfony\Component\Ldap\LdapInterface'
            $baseDn: '%env(LDAP_BASE_DN)%'