Udemy, Coursera, 2U/edX Face Lawsuits Over Meta Pixel Use

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

SymfonyCasts

Symfony 5 Security: Authenticators

via SymfonyCasts

Go to class Write review

Overview

It's security time! Symfony 5.3 comes with a reimagined version of its security system and I ❤️it! Yes, it's still super flexible & dependable. But the "guts" have been streamlined and simplified, making it easier to get your job done and giving you readable code if you need to dive into the core. In this course, we'll go from an introduction into Symfony security into a full-blown application with users, permissions, custom voters and multiple ways to authenticate: Generating your User class with make:user Security & Firewall Fundamentals Creating a custom login form with an authenticator Passport object & Badges CSRF protection API token authentication system User Providers (why you need them, but don't care) Password Hashing Logging out! Protecting entire URLs with access_control(s) IS_AUTHENTICATED_FULLY, IS_AUTHENTICATED_REMEMBERED, PUBLIC_ACCESS Checking access with roles! ROLE_USER Denying access in a controller Voters & Complex Permissions Role hierarchies Impersonation (switch_user) Login throttling Automatic Login (after Registration) Hooking into security with events! Two Factor Auth (2FA)! So let's make:user & make:auth our way to... make:profit... or at least to a great security system!

Syllabus

  • 01. composer require security
  • 02. make:user
  • 03. Customizing the User Class
  • 04. Building a Login Form
  • 05. Firewalls & Authenticators
  • 06. Authenticator & The Passport
  • 07. Custom User Query & Credentials
  • 08. Authentication Success & Refreshing the User
  • 09. When Authentication Fails
  • 10. Customize Error Messages & Adding Logout
  • 11. Giving Users Passwords
  • 12. Hashing Plain Passwords & PasswordCredentials
  • 13. Security Listener System & Csrf Protection
  • 14. Remember Me System
  • 15. Always Remember Me & "signature_properties"
  • 16. Denying Access, access_control & Roles
  • 17. The Entry Point: Inviting Users to Log In
  • 18. AbstractLoginFormAuthenticator & Redirecting to Previous URL
  • 19. form_login: The Built-in Authenticator
  • 20. More form_login Config
  • 21. Denying Access in a Controller
  • 22. Dynamic Roles
  • 23. The Special IS_AUTHENTICATED_ Strings
  • 24. Fetching the User Object
  • 25. Custom User Methods & the User in a Service
  • 26. Role Hierarchy
  • 27. Impersonation: switch_user
  • 28. User API & the Serializer
  • 29. To use API Token Authentication or Not?
  • 30. Registration Form
  • 31. Manual Authentication
  • 32. Making Questions owned by Users
  • 33. Leveraging the Question Owner
  • 34. Voters
  • 35. Custom Voter
  • 36. Verify Email after Registration
  • 37. Verifying the Signed Confirm Email URL
  • 38. Login Throttling & Events
  • 39. Security Events & Listeners
  • 40. Creating a Security Event Subscriber
  • 41. Custom Redirect when "Email Not Verified"
  • 42. 2 Factor Authentication & Authentication Tokens
  • 43. 2fa with TOTP (Time-Based One Time Password)
  • 44. Activating 2FA
  • 45. Rendering the QR Code
  • 46. QR Data & Scanning with an Authenticator App
  • 47. Customize The 2-Factor Auth Form

Taught by

Ryan Weaver

Reviews

Start your review of Symfony 5 Security: Authenticators

Go to class

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.