How to Use Matchers to Enable the Profiler Conditionally

By default, the profiler is only activated in the development environment. But it’s imaginable that a developer may want to see the profiler even in production. Another situation may be that you want to show the profiler only when an admin has logged in. You can enable the profiler in these situations by using matchers.

Using the built-in Matcher

Symfony provides a built-in matcher which can match paths and IPs. For example, if you want to only show the profiler when accessing the page with the 168.0.0.1 IP, then you can use this configuration:

• YAML

  # app/config/config.yml
  framework:
      # ...
      profiler:
          matcher:
              ip: 168.0.0.1
  

• XML

  <!-- app/config/config.xml -->
  <framework:config>
      <framework:profiler
          ip="168.0.0.1"
      />
  </framework:config>
  

• PHP

  // app/config/config.php
  $container->loadFromExtension('framework', array(
      'profiler' => array(
          'ip' => '168.0.0.1',
      ),
  ));
  

You can also set a path option to define the path on which the profiler should be enabled. For instance, setting it to ^/admin/ will enable the profiler only for the /admin/ URLs.

Creating a custom Matcher

You can also create a custom matcher. This is a service that checks whether the profiler should be enabled or not. To create that service, create a class which implements RequestMatcherInterface. This interface requires one method: matches(). This method returns false to disable the profiler and true to enable the profiler.

To enable the profiler when a ROLE_SUPER_ADMIN is logged in, you can use something like:

// src/AppBundle/Profiler/SuperAdminMatcher.php
namespace AppBundle\Profiler;

use Symfony\Component\Security\Core\SecurityContext;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\RequestMatcherInterface;

class SuperAdminMatcher implements RequestMatcherInterface
{
    protected $securityContext;

    public function __construct(SecurityContext $securityContext)
    {
        $this->securityContext = $securityContext;
    }

    public function matches(Request $request)
    {
        return $this->securityContext->isGranted('ROLE_SUPER_ADMIN');
    }
}

Then, you need to configure the service:

• YAML

  # app/config/services.yml
  services:
      app.profiler.matcher.super_admin:
          class: AppBundle\Profiler\SuperAdminMatcher
          arguments: ["@security.context"]
  

• XML

  <!-- app/config/services.xml -->
  <services>
      <service id="app.profiler.matcher.super_admin"
          class="AppBundle\Profiler\SuperAdminMatcher">
          <argument type="service" id="security.context" />
  </services>
  

• PHP

  // app/config/services.php
  use Symfony\Component\DependencyInjection\Definition;
  use Symfony\Component\DependencyInjection\Reference;
  
  $container->setDefinition('app.profiler.matcher.super_admin', new Definition(
      'AppBundle\Profiler\SuperAdminMatcher',
      array(new Reference('security.context'))
  );
  

Now the service is registered, the only thing left to do is configure the profiler to use this service as the matcher:

• YAML

  # app/config/config.yml
  framework:
      # ...
      profiler:
          matcher:
              service: app.profiler.matcher.super_admin
  

• XML

  <!-- app/config/config.xml -->
  <framework:config>
      <!-- ... -->
      <framework:profiler
          service="app.profiler.matcher.super_admin"
      />
  </framework:config>
  

• PHP

  // app/config/config.php
  $container->loadFromExtension('framework', array(
      // ...
      'profiler' => array(
          'service' => 'app.profiler.matcher.super_admin',
      ),
  ));