eerrrrrr

config/packages/security.yaml

@@ -1,4 +1,7 @@
 security:
+    role_hierarchy:
+        ROLE_ADMIN: ['ROLE_MODERATOR']
+        ROLE_MODERATOR: ['ROLE_USER']
     # https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
     password_hashers:
         Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
@@ -17,11 +20,11 @@ security:
             provider: app_user_provider
 
             form_login:
-                login_path: album_search
+                login_path: app_login
                 check_path: app_login
                 enable_csrf: true
                 default_target_path: album_search
-                failure_path: album_search
+                failure_path: app_login
                 username_parameter: _username
                 password_parameter: _password
                 csrf_parameter: _csrf_token
@@ -45,8 +48,9 @@ security:
     # Easy way to control access for large sections of your site
     # Note: Only the *first* access control that matches will be used
     access_control:
-        # - { path: ^/admin, roles: ROLE_ADMIN }
-        # - { path: ^/profile, roles: ROLE_USER }
+        - { path: ^/admin/settings, roles: ROLE_ADMIN }
+        - { path: ^/admin/users, roles: ROLE_MODERATOR }
+        - { path: ^/admin/dashboard, roles: ROLE_MODERATOR }
 
 when@test:
     security: