This course is still being released! Check back later for more chapters.

Get Notified About this Course!

We will send you messages regarding this course only
and nothing else, we promise.
You can unsubscribe anytime by emailing us at:
privacy@symfonycasts.com
> Symfony >

Course Overview

Seguridad en Symfony: Lo Esencial

Learn Symfony Security basics: users, login, registration, firewalls, access control, roles, and voters — and how Symfony decides who can do what.

  • beginner
  • 0 students
  • EN/ES Captions
  • EN/ES Script
  • Certificate of Completion

Your Guides

About this course

Este curso está en fase de planificación

La seguridad no tiene por qué dar miedo. En este curso, aprenderás a añadir autenticación y autorización reales a una aplicación de Symfony, paso a paso, desde cero hasta un sistema totalmente protegido.

Empezaremos instalando y entendiendo el componente Seguridad, luego crearemos usuarios, construiremos formularios de inicio de sesión y registro, y añadiremos prácticas funciones como "recuérdame". A partir de ahí, trabajarás con roles, cortafuegos, control de acceso y cómo decide Symfony "quién puede hacer qué".

Terminaremos desmitificando a los votantes — incluyendo uno que comprueba los permisos basándose en un objeto específico (un "sujeto") y otro que da poderes especiales a los superadministradores — para que entiendas los elementos básicos del sistema de autorización de Symfony.

Al final, no sólo sabrás qué botones pulsar, sino que comprenderás los fundamentos del funcionamiento de Symfony Security, para que puedas proteger tus aplicaciones con confianza.

Next courses in the Symfony: The Fundamentals section of the Symfony Track!

Codificación cósmica con Symfony 7
Codificación cósmica con Symfony 7
20 Videos | 1:53:05 | 0%
Doctrine, Symfony 7 y la base de datos
Doctrine, Symfony 7 y la base de datos
15 Videos | 1:02:10 | 0%
Fundamentos de Symfony 7: Servicios, Configuración y Entornos
Fundamentos de Symfony 7: Servicios, Configuración y Entornos
14 Videos | 57:27 | 0%

7 Comments

Sort By
Login or Register to join the conversation
Sebastian-O avatar Sebastian-O 2 months ago

I wonder if Symfony's security system can compete with OAuth 2 Flow and if you could open the new tutorial to this topic. Tried to integrate league/OAuth2-Bundle, but it's hard to understand, which Auth-steps can be performed by symfony security and which better with OAuth2-Bundle. (Given that whole Authenticatiom remains on the one Symfony-project without external Auth-Providers).

Reply |

Hey Sebastian,

Thank you for your interest in SymfonyCasts tutorials! Yes, OAuth2 flow is a cool topic to cover. We will definitely cover it, but in further courses. This Security Basics course will not have it, unfortunately.

Meanwhile, could you clarify if you're looking for building a standalone OAuth server for your needs? Because the bundle you're referencing is probably league/oauth2-server-bundle ? If so, we have a standalone course on this topic: https://symfonycasts.com/screencast/oauth .

But in most cases users usually just want an integration with already existent OAuth providers like Facebook, GitHub, SymfonyConnect, etc. where you don't need to spin up and configure your own OAuth2 server for these purposes. If you just want to add social logins on your website - you should take a look at league/oauth2-client instead. Or we would recommend to look at ours knpuniversity/oauth2-client-bundle . And it's implementation should be much easier than creating your own server for OAuth login.

I hope that helps!

Cheers!

Reply |
Sebastian-O avatar Sebastian-O Victor 1 month ago

Hey Victor, thank you very much. Now I have to check the differences between client- and server-bundle, I was not aware that there are two bundles.

For this new course, I am interested how to config and implement parallel access-methods with Symfony Security (Client-Apps on Smartphone, good old Browser-Login, public Api).

Cheers!

Reply |

Hey Sebastian,

You're welcome, unless you need your own custom OAuth provider - you should take a look at the simpler OAuth client bundle that will just help you with integration on existing social networks :)

But what you mentioned is not a simple OAuth-client case, there you will need an authentication/resource server. Unfortunately we won't cover this complex case in this Security basics course, but I think our https://symfonycasts.com/screencast/oauth course may help you with planning. I would recommend you watch that :)

I hope that helps!

Cheers!

Reply |

This is one of my favorites. Can’t wait to see it.
On the other hand, It would be amazing to have some guidance about SSO.

Reply |

Hey John,

Thank you for your interest in SymfonyCasts tutorials! We plan it to be a short course, but SSO is a good thing to talk about, that's why we will plan to do several mini courses after this basic one related to security, and SSO would be good to be mentioned there for sure.

Thank you for your patience and understanding!

Cheers!

3 Reply |

Delete comment?

Share this comment

astronaut with balloons in space

"Houston: no signs of life"
Start the conversation!