Update security.yaml

Author: ThomasLandauer

symfony/security-bundle/7.3/config/packages/security.yaml

@@ -2,28 +2,30 @@ security:
     # https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
     password_hashers:
         Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
+
     # https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider
     providers:
         users_in_memory: { memory: null }
+
     firewalls:
-        # Disable security for dev tools and static assets (only needed if access_control is broad)
+        # Disable security for dev tools and static assets (only needed if access_control is broad):
         dev:
-            # 'assets/' is for AssetMapper, 'build/' for Webpack Encore
-            # (note: no regex delimiters needed; Symfony adds `{}` automatically)
+            # 'assets/' is for AssetMapper, 'build/' for Webpack Encore.
+            # (Note: no regex delimiters needed; Symfony adds `{}` automatically.)
             pattern: ^/(_profiler|_wdt|assets|build)/
             security: false
         main:
             lazy: true
             provider: users_in_memory
 
-            # activate different ways to authenticate
+            # Activate different ways to authenticate:
             # https://symfony.com/doc/current/security.html#the-firewall
 
             # https://symfony.com/doc/current/security/impersonating_user.html
             # switch_user: true
 
-    # Easy way to control access for large sections of your site
-    # Note: Only the *first* access control that matches will be used
+    # Controls access to different sections of the application.
+    # Only the *first* matching rule is applied.
     access_control:
         # - { path: ^/admin, roles: ROLE_ADMIN }
         # - { path: ^/profile, roles: ROLE_USER }