Yannick Ihmels

I added the `request_matcher` option to the docs. While writing this, I noticed that it also makes sense to ignore the `content_types` option when a custom RequestMatcher has been configured.

Maybe we should remove the check, if the user is already logged in in the SecurityController::login() action so that users can re-enter their passwords, when `IS_AUTHENTICATED_FULLY` is required. ```diff class...

@artyuum If you add the remember me functionallity, users who are logged in only because of a remember me cookie will have `IS_AUTHENTICATED_REMEMBERED`, but will not have `IS_AUTHENTICATED_FULLY`. If you...

@Seldaek, can you take another look at this?

> Not really as `use_symfony_listeners: false` also breaks some behaviors for example attributes like `read`. But shouldn't the `MainController` be used if `event_listeners_backward_compatibility_layer` is set to `false`?