up

config/packages/framework.yaml

@@ -3,8 +3,8 @@ framework:
     secret: '%env(APP_SECRET)%'
 
     # Note that the session will be started ONLY if you read or write from it.
-    session: true
-
+    session:
+        handler_id: Symfony\Component\HttpFoundation\Session\Storage\Handler\PdoSessionHandler
     #esi: true
     #fragments: true
 

config/packages/reset_password.yaml

@@ -0,0 +1,5 @@
+symfonycasts_reset_password:
+    # Replace symfonycasts.reset_password.fake_request_repository with the full
+    # namespace of the password reset request repository after it has been created.
+    # i.e. App\Repository\ResetPasswordRequestRepository
+    request_password_repository: symfonycasts.reset_password.fake_request_repository

config/packages/security.yaml

@@ -4,14 +4,18 @@ security:
         Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
     # https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider
     providers:
-        users_in_memory: { memory: null }
+        # used to reload user from session & other features (e.g. switch_user)
+        app_user_provider:
+            entity:
+                class: App\Entity\User
+                property: email
     firewalls:
         dev:
             pattern: ^/(_(profiler|wdt)|css|images|js)/
             security: false
         main:
             lazy: true
-            provider: users_in_memory
+            provider: app_user_provider
 
             # activate different ways to authenticate
             # https://symfony.com/doc/current/security.html#the-firewall