symfony-security

I've been reading up about creating custom voters in Symfony 2. According to this page , it is possible to pass an object to the isGranted method of the securitycontext, which I have done in my own controller: $page = new Page(); if ( ! $securityContext->isGranted('CONTENT_CREATE', $page)) { throw new AccessDeniedException('Fail'); } It looks like the vote method should be accepting it, however, when I call get_class on the $object parameter, instead of getting my Page entity, I get: Symfony\Component\HttpFoundation\Request public function vote(TokenInterface $token, $object, array $attributes

This is the function supportsClass in class Voter http://symfony.com/doc/2.5/cookbook/security/voters_data_permission.html public function supportsClass($class) { $supportedClass = 'AppBundle\Entity\Post'; return $supportedClass === $class || is_subclass_of($class, $supportedClass); } I'd like to know if it is possible to use one class voter for many entities in the same bundle or I have to create a Voter for each entity ? EDIT I have found this solution: public function supportsClass($class) { $classes = array( 'Project\AgenceBundle\Entity\Agence', 'Project\AgenceBundle\Entity\SubAgence',

Let's say I have my access_control block under the security.yml : access_control: - { path: ^/$, roles: IS_AUTHENTICATED_ANONYMOUSLY } - { path: ^/reset-password, roles: IS_AUTHENTICATED_ANONYMOUSLY } In this case everyone is alowed to enter homepage and reset-password pages. But I would like to allow these pages only for users authenticated anonymously. Fully authenticated users should get an 403 access denied error or 404 page not found . According documentation with allow_if I should be ablo to create role expressions to define access. But if I do it like this: access_control: - { path: ^