security:
    enable_authenticator_manager: true
    role_hierarchy:
        ROLE_ADMIN:       ROLE_USER
        ROLE_SUPER_ADMIN: [ROLE_ADMIN]
    providers:
        apikey_provider:
            id: App\Security\ApiKeyProvider
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        status:
            pattern:  ^/status
            stateless: true
        docs:
            pattern:  ^/docs
            stateless: true
        generate_pdf:
            pattern:  ^/generate-pdf|generate-itinerary|generate-certification-document
            stateless: true
        main:
            pattern:  ^/
            stateless: true
            http_basic:
                provider: apikey_provider
            custom_authenticators:
                - App\Security\ApiKeyAuthenticator
            provider: apikey_provider

    access_control:
        - { path: ^/docs, roles: PUBLIC_ACCESS }
        - { path: ^/status, role: PUBLIC_ACCESS  }
        - { path: ^/generate-pdf, roles: PUBLIC_ACCESS}
        - { path: ^/generate-itinerary, roles: PUBLIC_ACCESS}
        - { path: ^/generate-certification-document, roles: PUBLIC_ACCESS}
        - { path: ^/secure-file, roles: PUBLIC_ACCESS}
        - { path: ^/, roles: ROLE_ADMIN, methods: [POST, PUT, DELETE]}
        - { path: ^/, roles: IS_AUTHENTICATED_FULLY}