#security:
    #firewalls:
        restrictions:
            provider: restrictions_security_user_provider
            #http_basic: ~

            entry_point: form_login

            form_login:
                enable_csrf: true
                default_target_path: restrictions_login
                always_use_default_target_path: true
                login_path: restrictions_login
                check_path: restrictions_login
            logout:
                path: restrictions_logout
                target: restrictions_login

                # optional: to keep logins of other firewalls (like admin)
                invalidate_session: false
