I have developed an application in Symfony, with which I have no functional problems, more if in security according to some suggestions of infrastructure coordination.
The point is that from the production server you can access the base directories of the project: symfony, vendor, app, var / sessions etc ...
Which can be corrected with a .htaccess surely, (although I do not know the implications of the creation of these .htaccess the communication between the modules of the Framework)
Someone can recommend what steps should be taken to move the application to the production environment in such a way that it can be guaranteed that users (logged in and not logged in) can not access the libraries and source directories of the project
Thank you very much for your help, It's my first project in the framework