src/Voter/SupplierVoter.php line 13

Open in your IDE?
  1. <?php
  3. namespace App\Voter;
  5. use App\Entity\Supplier;
  6. use App\Entity\User as UserEntity;
  7. use App\Model\SupplierFactory;
  8. use App\Model\User\User;
  9. use Exception;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  13. class SupplierVoter extends Voter
  14. {
  15.     public const CREATE_GUEST_SUPPLIER 'create_guest_supplier';
  17.     public const MANAGE_GUEST_SUPPLIER 'manage_guest_supplier';
  19.     public const DECLARE_SUPPLIER_ACCOUNT 'declare_supplier_account';
  21.     public const VIEW_SUPPLIER 'view_supplier';
  23.     private $user;
  25.     /**
  26.      * @var SupplierFactory
  27.      */
  28.     private $supplierFactory;
  30.     public function __construct(User $userSupplierFactory $supplierFactory)
  31.     {
  32.         $this->user            $user;
  33.         $this->supplierFactory $supplierFactory;
  34.     }
  36.     protected function supports($attribute$subject): bool
  37.     {
  39.         // if the attribute isn't one we support, return false
  40.         if (! in_array($attribute, [
  41.             self::CREATE_GUEST_SUPPLIER,
  42.             self::MANAGE_GUEST_SUPPLIER,
  43.             self::DECLARE_SUPPLIER_ACCOUNT,
  44.             self::VIEW_SUPPLIER
  45.         ])) {
  46.             return false;
  47.         }
  49.         // only vote on Supplier objects inside this voter
  50.         if (! $subject instanceof Supplier) {
  51.             return false;
  52.         }
  54.         return true;
  55.     }
  57.     /**
  58.      * @param string $attribute
  59.      * @param Supplier $entity
  60.      *
  61.      * @return bool
  62.      * @throws Exception
  63.      */
  64.     protected function voteOnAttribute($attribute$entityTokenInterface $token): bool
  65.     {
  68.         $userEntity $token->getUser();
  69.         if (! $userEntity instanceof UserEntity) {
  70.             // the user must be logged in; if not, deny access
  71.             return false;
  72.         }
  74.         switch ($attribute) {
  75.             case self::CREATE_GUEST_SUPPLIER:
  77.                 return $this->user->canManageCurrentShopGuestSuppliers();
  79.             case self::MANAGE_GUEST_SUPPLIER:
  81.                 $supplier $this->supplierFactory->createModel();
  82.                 $supplier->setEntity($entity);
  84.                 return $supplier->canBeManagedBy($this->user);
  86.             case self::DECLARE_SUPPLIER_ACCOUNT:
  88.                 $supplier $this->supplierFactory->createModel();
  89.                 $supplier->setEntity($entity);
  91.                 return $supplier->accountCanBeDeclaredBy($this->user);
  93.             case self::VIEW_SUPPLIER:
  95.                 $supplier $this->supplierFactory->createModel();
  96.                 $supplier->setEntity($entity);
  98.                 return $supplier->canBeViewedBy($this->user);
  100.         }
  102.         return false;
  103.     }
  104. }