Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
Opentalent
/
ap2i
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 98c365c362
Branche Tagy
ap2i
/
src
/
Security
/
Voter
/
EntityVoter
/
Core
/
ContactPointVoter.php

ContactPointVoter.php 2.0 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. <?php
    2. 

  2. declare(strict_types=1);
    3. 

  3. 

  4. namespace App\Security\Voter\EntityVoter\Core;
    5. 

  5. 

  6. use App\Entity\Access\Access;
    7. 

  7. use App\Entity\Core\BankAccount;
    8. 

  8. use App\Entity\Core\ContactPoint;
    9. 

  9. use App\Security\Voter\EntityVoter\AbstractEntityVoter;
    10. 

  10. use Symfony\Bundle\SecurityBundle\Security;
    11. 

  11. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
    12. 

  12. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
    13. 

  13. use Symfony\Component\Security\Core\User\UserInterface;
    14. 

  14. 

  15. class ContactPointVoter extends AbstractEntityVoter
    16. 

  16. {
    17. 

  17.     /**
    18. 

  18.      * @inheritdoc
    19. 

  19.      */
    20. 

  20.     protected static ?string $entityClass = ContactPoint::class;
    21. 

  21. 

  22.     /**
    23. 

  23.      * @inheritdoc
    24. 

  24.      */
    25. 

  25.     protected static array $allowedOperations = [
    26. 

  26.         self::READ, self::EDIT, self::DELETE
    27. 

  27.     ];
    28. 

  28. 

  29.     /**
    30. 

  30.      * Can the user interact with the ContactPoint with the given required role
    31. 

  31.      *
    32. 

  32.      * @param string $role The role needed to interract with the ContactPoint
    33. 

  33.      * @return bool
    34. 

  34.      */
    35. 

  35.     private function canInteractIfHasRole(object $subject, string $role): bool {
    36. 

  36.         return $this->isUserLoggedIn()
    37. 

  37.             && $subject->getOrganization()->count() === 1
    38. 

  38.             && $this->security->isGranted($role)
    39. 

  39.             && $subject->getOrganization()->current()->getId() === $this->getUser()->getOrganization()->getId();
    40. 

  40.     }
    41. 

  41. 

  42.     /**
    43. 

  43.      * @inheritdoc
    44. 

  44.      *
    45. 

  45.      * @param $subject BankAccount
    46. 

  46.      * @return boolean
    47. 

  47.      */
    48. 

  48.     protected function canView(object $subject): bool {
    49. 

  49.         return $this->canInteractIfHasRole($subject, 'ROLE_ORGANIZATION_VIEW');
    50. 

  50.     }
    51. 

  51. 

  52.     /**
    53. 

  53.      * @inheritdoc
    54. 

  54.      *
    55. 

  55.      * @param $subject BankAccount
    56. 

  56.      * @return boolean
    57. 

  57.      */
    58. 

  58.     protected function canEdit(object $subject): bool {
    59. 

  59.         return $this->canInteractIfHasRole($subject, 'ROLE_ORGANIZATION');
    60. 

  60.     }
    61. 

  61. 

  62.     /**
    63. 

  63.      * @inheritdoc
    64. 

  64.      *
    65. 

  65.      * @param $subject BankAccount
    66. 

  66.      * @return boolean
    67. 

  67.      */
    68. 

  68.     protected function canDelete(object $subject): bool {
    69. 

  69.         return $this->canEdit($subject);
    70. 

  70.     }
    71. 

  71. 

  72. }
    73.