Hello,
I'd like to use 'ROLE_ALLOWED_TO_SWITCH' for someone else than the super admin.
But once a user has this role, he can switch to any role, even the super admin.
Even with the following configuration:
security:
access_decision_manager:
strategy: unanimous
Is there a way to limit that?
Thanks,
--
Vincent
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony users" group.
To post to this group, send email to symfony-users@googlegroups.com
To unsubscribe from this group, send email to
symfony-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
