framework: secret: "%env(APP_SECRET)%" #csrf_protection: true #http_method_override: true # Enables session support. Note that the session will ONLY be started if you read or write from it. # Remove or comment this section to explicitly disable session support. session: name: "%env(APP_NAME)%" handler_id: null cookie_secure: auto cookie_samesite: lax esi: true #fragments: true php_errors: log: true validation: { enable_annotations: true }