Add base saml configuration

- Allow enabling saml configuration
- Make security.access_control dynamic, depending on the auth_type
- Add saml specific access_control configuration
- Add saml routes configuration
- Enable auth.logout.redirect for saml
- Add template configuration for hslavich_onelogin_saml

config/packages/security.yaml

@@ -11,14 +11,3 @@ security:
     app_user_provider:
       entity:
         class: App\Module\Users\Entity\User
-
-  # Note: Only the *first* access control that matches will be used
-  access_control:
-    - { path: ^/login$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/session-status$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/logout$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/api, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/api/graphql, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/api/graphql/graphiql*, roles: IS_AUTHENTICATED_ANONYMOUSLY }
-    - { path: ^/, roles: IS_AUTHENTICATED_FULLY }