security:
    encoders:
        FOS\UserBundle\Model\UserInterface: bcrypt

    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: ROLE_ADMIN

    providers:
        fos_userbundle:                           #1
            id: fos_user.user_provider.username

        my_tokenkey_provider:                     #2
            entity:
                class: PotageBundle:User
                #property: tokenKey
                # je ne peux me référer à une simple propriété puisque c'est un tableau qui peut contenir plusieurs tokens

    firewalls:
        main:
            pattern: ^/
            form_login:
                provider: fos_userbundle          #1
                csrf_token_generator: security.csrf.token_manager
                login_path: fos_user_security_login
                check_path: fos_user_security_check
                default_target_path: potage_today
                use_referer : true
            logout:
                path:       fos_user_security_logout
                target:     fos_user_security_login
            anonymous:    true

            guard:
                provider: my_tokenkey_provider    #2
                authenticators:
                    - PotageBundle\Security\TokenAuthenticator

    access_control:
        - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/register, role: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/resetting, role: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/member/, role: ROLE_USER }
        - { path: ^/admin/, role: ROLE_ADMIN }
        - { path: ^/API/, role: ROLE_ADMIN }