src/Security/Voter/Template/TemplateVoter.php line 14

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Security\Voter\Template;
  7. use App\Model\User\Entity\Profile\Template\Status;
  8. use App\Model\User\Entity\User\Role\Permission;
  9. use App\Security\UserIdentity;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  12. use Symfony\Component\Security\Core\Security;
  14. class TemplateVoter extends Voter
  15. {
  16.     public const TEMPLATE_CREATE    'template_create';
  17.     public const TEMPLATE_EDIT      'template_edit';
  18.     public const TEMPLATE_DELETE    'template_delete';
  19.     public const TEMPLATE_INDEX     'template_index';
  20.     public const TEMPLATE_SHOW      'template_show';
  21.     public const TEMPLATE_GENERATE  'template_generate';
  22.     public const TEMPLATE_DUPLICATE 'template_duplicate';
  24.     private $security;
  26.     public function __construct(Security $security)
  27.     {
  28.         $this->security $security;
  29.     }
  31.     protected function supports(string $attribute$subject): bool
  32.     {
  33.         return in_array($attribute, [
  34.                 self::TEMPLATE_CREATE,
  35.                 self::TEMPLATE_EDIT,
  36.                 self::TEMPLATE_INDEX,
  37.                 self::TEMPLATE_SHOW ,
  38.                 self::TEMPLATE_GENERATE,
  39.                 self::TEMPLATE_DELETE,
  40.                 self::TEMPLATE_DUPLICATE
  41.             ], true);
  42.     }
  44.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  45.     {
  46.         $user $token->getUser();
  48.         if (!$user instanceof UserIdentity) {
  49.             return false;
  50.         }
  52.         if ($attribute === self::TEMPLATE_CREATE) {
  53.             return $user->isPermission(Permission::TEMPLATE_CREATE);
  54.         }
  56.         if ($subject->is_public and (new Status($subject->status))->isStandard()) {
  57.             if ($attribute === self::TEMPLATE_SHOW) {
  58.                 return $user->isPermission(Permission::TEMPLATE_SHOW);
  59.             }
  60.             if ($attribute === self::TEMPLATE_GENERATE) {
  61.                 return $user->isPermission(Permission::TEMPLATE_GENERATE);
  62.             }
  63.             if ($attribute === self::TEMPLATE_DUPLICATE) {
  64.                 return $user->isPermission(Permission::TEMPLATE_DUPLICATE);
  65.             }
  66.         }
  68.         if ($user->getProfileId() !== $subject->profile_id) {
  69.             return false;
  70.         }
  72.         switch ($attribute) {
  73.             case self::TEMPLATE_INDEX:
  74.                 return $user->isPermission(Permission::TEMPLATE_INDEX);
  75.                 break;
  77.             case self::TEMPLATE_EDIT:
  78.                 return $user->isPermission(Permission::TEMPLATE_EDIT);
  79.                 break;
  81.             case self::TEMPLATE_CREATE:
  82.                 return $user->isPermission(Permission::TEMPLATE_CREATE);
  83.                 break;
  85.             case self::TEMPLATE_SHOW:
  86.                 return $user->isPermission(Permission::TEMPLATE_SHOW);
  87.                 break;
  89.             case self::TEMPLATE_GENERATE:
  90.                 return $user->isPermission(Permission::TEMPLATE_GENERATE);
  91.                 break;
  92.             case self::TEMPLATE_DELETE:
  93.                 return $user->isPermission(Permission::TEMPLATE_DELETE);
  94.                 break;
  95.             case self::TEMPLATE_DUPLICATE:
  96.                 return $user->isPermission(Permission::TEMPLATE_DUPLICATE);
  97.                 break;
  98.         }
  99.         return false;
  100.     }
  101. }