feature #15503 [Security] Rewrite Security documentation (wouterj, weaverryan)

This PR was merged into the 5.3 branch.

Discussion
----------

[Security] Rewrite Security documentation

This is still very WIP, but I wanted to get it out here to receive the first set of global feedback (I haven't re-read anything, so no need to comment on typos, wrong sentences or grammar yet).

Of course, the main goal of this rewrite is to document the new authenticator system and remove anything about guards, authentication providers, etc. Besides that, I've focused on 3 other things:

1. **Give the user something that's working as quick as possible.** This means using lots of makers and showing real code examples. I've discussed with Ryan and Jesse and we'll also extend the security makers to make even more docs redundant (I'm jealous at Laravel, which basically replaced all its authentication docs with "run `jetstream:install`").
2. **Move as much information to the main guide as possible** (following our doc practices of the last years). This means e.g. documenting all user providers and authenticators in the main guide. The subguides should be clearly scoped and about advanced/reference documentation (most of the subguides are yet to be worked on)
3. **Focus on the built-in authenticators, rather than implementing your own authenticator.** We've pushed writing your own guard in the docs way to much for my liking. E.g. for 90% of the use-cases, using the built-in `form_login` authenticator works perfectly. This will also be updated in the maker (where `make:auth` is not only going to suggest making a PHP authenticator) sometime in the future.

For the structure, I decided to follow the security config generated by the recipe/maker and explain section per section.

Commits
-------

cc84098 Fixes after final review from Javier and Ryan
1e49d52 fixing syntax error
df05fdb Various tweaks to the new security documentation
d5460ed Rewrite Security documentation

Author: wouterj

_build/conf.py

@@ -121,17 +121,6 @@
 lexers['terminal'] = TerminalLexer()
 lexers['env']  = BashLexer()
 
-config_block = {
-    'apache': 'Apache',
-    'markdown': 'Markdown',
-    'nginx': 'Nginx',
-    'rst': 'reStructuredText',
-    'varnish2': 'Varnish 2',
-    'varnish3': 'Varnish 3',
-    'varnish4': 'Varnish 4',
-    'env': '.env'
-}
-
 # don't enable Sphinx Domains
 primary_domain = None
 

_build/redirection_map

@@ -518,4 +518,17 @@
 /components/index https://symfony.com/components
 /logging/monolog_regex_based_excludes /logging/monolog_exclude_http_codes
 /security/named_encoders /security/named_hashers
-/security/experimental_authenticators /security/authenticator_manager
+/security/experimental_authenticators /security
+/security/user_provider /security/user_providers
+/security/reset_password /security/passwords#reset-password
+/security/auth_providers /security#security-authenticators
+/security/form_login /security#form-login
+/security/form_login_setup /security#form-login
+/security/json_login_setup /security#json-login
+/security/named_hashers /security/passwords#named-password-hashers
+/security/password_migration /security/passwords#security-password-migration
+/security/acl https://github.com/symfony/acl-bundle/blob/main/src/Resources/doc/index.rst
+/security/securing_services /security#securing-other-services
+/security/authenticator_manager /security
+/security/multiple_guard_authenticators /security/entry_point
+/security/guard_authentication /security/custom_authenticator

_images/security/anonymous_wdt.png

@@ -14,7 +14,7 @@ form you must:
 #. :doc:`Create a form </forms>` to ask for the registration information (you can
    generate this with the ``make:registration-form`` command provided by the `MakerBundle`_);
 #. Create :doc:`a controller </controller>` to :ref:`process the form <processing-forms>`;
-#. :ref:`Protect some parts of your application <security-authorization>` so
+#. :ref:`Protect some parts of your application <security-access-control>` so
    only registered users can access to them.
 
 .. _`MakerBundle`: https://symfony.com/doc/current/bundles/SymfonyMakerBundle/index.html

_images/security/security_events.svg

@@ -335,9 +335,9 @@ or can get everything which partial matches the event name:
 
     The ability to match partial event names was introduced in Symfony 5.3.
 
-The :doc:`new authenticator-based Security </security/authenticator_manager>`
-system adds an event dispatcher per firewall. Use the ``--dispatcher`` option to
-get the registered listeners for a particular event dispatcher:
+The :doc:`security </security>` system uses an event dispatcher per
+firewall. Use the ``--dispatcher`` option to get the registered listeners
+for a particular event dispatcher:
 
 .. code-block:: terminal