security:
    enable_authenticator_manager: true
    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_ADMIN]
    providers:
        apikey_provider:
            id: App\Security\ApiKeyProvider
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        status:
            pattern:  ^/status
            stateless: true
        quiz_result:
            pattern:  ^/send-result-quiz
            stateless: true
        docs:
            pattern:  ^/docs
            stateless: true
        email:
            pattern:  ^/email
            stateless: true
        secure_file:
            pattern:  ^/secure-file
            stateless: true
        main:
            pattern:  ^/
            stateless: true
            http_basic:
                provider: apikey_provider
            custom_authenticators:
                - App\Security\ApiKeyAuthenticator
            provider: apikey_provider

    access_control:
        - { path: ^/$, roles: PUBLIC_ACCESS } # Allows accessing the Swagger UI
        - { path: ^/status, role: PUBLIC_ACCESS  }
        - { path: ^/send-result-quiz, role: PUBLIC_ACCESS  }
        - { path: ^/docs, role: PUBLIC_ACCESS  }
        - { path: ^/email, role: PUBLIC_ACCESS  }
        - { path: ^/secure-file, roles: PUBLIC_ACCESS }
        - { path: ^/, role: IS_AUTHENTICATED_FULLY}