Added details to the configuration documentation (absolute-quantum#66)

r3hp1c · web-flow · commit 6f8c0534466c · 2025-10-26T15:57:13.000+02:00
diff --git a/src/Resources/doc/configuration.md b/src/Resources/doc/configuration.md
@@ -13,6 +13,8 @@ To make changes to the default configuration values you will need to create the
 * **secret_directory_path** - Path to where the key file is stored
     * Default: '%kernel.project_dir%'
     * If **secret** is defined in the configuration make sure that **secret_directory_path** is not
+* **enable_secret_generation** - Defines if the secret is generated if not available
+    * Default: true
 * **secret** - The secret as a string
     * Default: null
     * Suggest to use environment variables and [Symfony Secrets](https://symfony.com/doc/current/configuration/secrets.html)
@@ -32,6 +34,10 @@ ambta_doctrine_encrypt:
     # Default: '%kernel.project_dir%'
     # secret_directory_path: '%kernel.project_dir%'
 
+    # If the secret should be generated
+    # Default: true
+    # enable_secret_generation: true
+
     # Secret string
     # secret: '%env(CRYPTO_SECRET)%'
 ```
@@ -48,6 +54,10 @@ ambta_doctrine_encrypt:
     # Default: '%kernel.project_dir%'
     # secret_directory_path: '%kernel.project_dir%'
 
+    # If the secret should be generated
+    # Default: true
+    # enable_secret_generation: true
+
     # Secret string
     # secret: '%env(CRYPTO_SECRET)%'
 ```
@@ -64,6 +74,10 @@ ambta_doctrine_encrypt:
     # Default: '%kernel.project_dir%'
     secret_directory_path: '%kernel.project_dir%/keys'
 
+    # If the secret should be generated
+    # Default: true
+    # enable_secret_generation: true
+
     # Secret string
     # secret: '%env(CRYPTO_SECRET)%'
 ```
@@ -80,6 +94,10 @@ ambta_doctrine_encrypt:
     # Default: '%kernel.project_dir%'
     # secret_directory_path: '%kernel.project_dir%'
 
+    # If the secret should be generated
+    # Default: true
+    enable_secret_generation: false
+
     # Secret string
     secret: '%env(CRYPTO_SECRET)%'
 ```
@@ -96,10 +114,26 @@ ambta_doctrine_encrypt:
     # Default: '%kernel.project_dir%'
     secret_directory_path: '%kernel.project_dir%'
 
+    # If the secret should be generated
+    # Default: true
+    # enable_secret_generation: true
+
     # Secret string
     secret: '%env(CRYPTO_SECRET)%'
 ```
 
+Be aware that there are multiple different service definitions [Yaml](/src/Resources/config).
+* The services.yml file is always loaded first
+* Then if the secret configuration setting is used services_with_secret.yml will be loaded otherwise services_with_secretfactory.yml
+* Symfony 5 and 6 where Doctrine ORM version matches ^3.0 service_listeners_with_attributes.yml will be loaded that does not support annotations
+* Symfony 5 and 6 with an older Doctrine version services_subscriber_with_annotations_and_attributes.yml will be loaded that supports both attributes and annotations
+* Symfony 7 always just loads attributes only service_listeners_with_attributes.yml service definition
+
+If has been reported that in some cases the encryption and decryption does not work as expected and the service definitions assisted in fixing the issues.
+
+One solution that have been reported was to copy the "ambta_doctrine_encrypt.orm_subscriber" definition from the service_listeners_with_attributes.yml file into
+the project's services.yaml file.
+
 Due to the Doctrine Annotations [deprecation](https://www.doctrine-project.org/projects/doctrine-annotations/en/stable/index.html#deprecation-notice) it has been made possible to change the reader to the ambta_doctrine_attribute_reader reader only and skip using annotations completely.
 
 Attributes are faster to read than annotations so it is definitely recommended.
