security:
    enable_authenticator_manager: true
    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_ADMIN]
    providers:
        apikey_provider:
            id: App\Security\ApiKeyProvider
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        docs:
            pattern:  ^/docs
            stateless: true
        status:
            pattern:  ^/status
            stateless: true
        main:
            pattern:  ^/
            stateless: true
            http_basic:
                provider: apikey_provider
            custom_authenticators:
                - App\Security\ApiKeyAuthenticator
            provider: apikey_provider

    access_control:
        - { path: ^/docs, role: PUBLIC_ACCESS  }
        - { path: ^/status, role: PUBLIC_ACCESS  }
        - { path: ^/, role: IS_AUTHENTICATED_FULLY}