fjugaldev/security.yaml

## security.yaml
security:
    encoders:
        App\Entity\User:
            algorithm: sha512

    providers:
        api_user_provider:
            entity:
                class: App\Entity\User
                property: username

    firewalls:
        login:
            pattern:  ^/api/login
            stateless: true
            anonymous: true
            form_login:
                check_path:               /api/login_check
                success_handler:          lexik_jwt_authentication.handler.authentication_success
                failure_handler:          lexik_jwt_authentication.handler.authentication_failure
                require_previous_session: false

        api:
            pattern:   ^/api/v1
            stateless: true
            anonymous: false
            provider: api_user_provider
            guard:
                authenticators:
                    - lexik_jwt_authentication.jwt_token_authenticator

    access_control:
        - { path: ^/api/login_check, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/api/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/api/register, roles: IS_AUTHENTICATED_ANONYMOUSLY }
        - { path: ^/api/v1,       roles: IS_AUTHENTICATED_FULLY }
	security:
	encoders:
	App\Entity\User:
	algorithm: sha512

	providers:
	api_user_provider:
	entity:
	class: App\Entity\User
	property: username

	firewalls:
	login:
	pattern: ^/api/login
	stateless: true
	anonymous: true
	form_login:
	check_path: /api/login_check
	success_handler: lexik_jwt_authentication.handler.authentication_success
	failure_handler: lexik_jwt_authentication.handler.authentication_failure
	require_previous_session: false

	api:
	pattern: ^/api/v1
	stateless: true
	anonymous: false
	provider: api_user_provider
	guard:
	authenticators:
	- lexik_jwt_authentication.jwt_token_authenticator

	access_control:
	- { path: ^/api/login_check, roles: IS_AUTHENTICATED_ANONYMOUSLY }
	- { path: ^/api/login, roles: IS_AUTHENTICATED_ANONYMOUSLY }
	- { path: ^/api/register, roles: IS_AUTHENTICATED_ANONYMOUSLY }
	- { path: ^/api/v1, roles: IS_AUTHENTICATED_FULLY }