Skip to content

Commit

Permalink
Revert "Locking down _profiler route to require PIMCORE_ADMIN role to…
Browse files Browse the repository at this point in the history
… reduce exposure of sensitive info"

This reverts commit 63795cc.
  • Loading branch information
evanjamesjackson committed Oct 17, 2024
1 parent 63795cc commit 05029c0
Showing 1 changed file with 1 addition and 2 deletions.
3 changes: 1 addition & 2 deletions config/packages/security.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ security:

firewalls:
dev:
pattern: ^/(_(wdt)|css|images|js)/
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false

# Pimcore WebDAV HTTP basic // DO NOT CHANGE!
Expand All @@ -29,7 +29,6 @@ security:
- { path: ^/admin/login/(login|lostpassword|deeplink|csrf-token)$, roles: PUBLIC_ACCESS }
- { path: ^/admin, roles: ROLE_PIMCORE_USER }
- { path: ^/asset/webdav, roles: ROLE_PIMCORE_USER }
- { path: ^/_profiler, roles: ROLE_PIMCORE_ADMIN }

role_hierarchy:
# Pimcore admin // DO NOT CHANGE!
Expand Down

0 comments on commit 05029c0

Please sign in to comment.