Inicio Explorar Axuda
Rexistro Iniciar sesión
Opentalent
/
ap2i
2
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: c65ac7bddd
Ramas Etiquetas
ap2i
/
src
/
Doctrine
/
Access
/
AccessExtension.php

AccessExtension.php 2.1 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152 
  1. <?php
    2. 

  2. declare(strict_types=1);
    3. 

  3. 

  4. namespace App\Doctrine\Access;
    5. 

  5. 

  6. use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\QueryCollectionExtensionInterface;
    7. 

  7. use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\QueryItemExtensionInterface;
    8. 

  8. use ApiPlatform\Core\Bridge\Doctrine\Orm\Util\QueryNameGeneratorInterface;
    9. 

  9. use App\Entity\Access\Access;
    10. 

  10. use Doctrine\ORM\QueryBuilder;
    11. 

  11. use Symfony\Component\Security\Core\Security;
    12. 

  12. 

  13. /**
    14. 

  14.  * Class AccessExtension : Filtre de sécurité par défaut pour une resource Access
    15. 

  15.  * @package App\Doctrine\Access
    16. 

  16.  */
    17. 

  17. final class AccessExtension implements QueryCollectionExtensionInterface, QueryItemExtensionInterface
    18. 

  18. {
    19. 

  19.     private Security $security;
    20. 

  20.     private HandleAccessExtension $handleAccessExtension;
    21. 

  21. 

  22.     public function __construct(Security $security, HandleAccessExtension $handleAccessExtension)
    23. 

  23.     {
    24. 

  24.         $this->security = $security;
    25. 

  25.         $this->handleAccessExtension = $handleAccessExtension;
    26. 

  26.     }
    27. 

  27. 

  28.     public function applyToCollection(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, string $operationName = null): void
    29. 

  29.     {
    30. 

  30.         $this->addWhere($queryBuilder, $resourceClass, $operationName);
    31. 

  31.     }
    32. 

  32. 

  33.     public function applyToItem(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, array $identifiers, string $operationName = null, array $context = []): void
    34. 

  34.     {
    35. 

  35.         $this->addWhere($queryBuilder, $resourceClass, $operationName);
    36. 

  36.     }
    37. 

  37. 

  38.     private function addWhere(QueryBuilder $queryBuilder, string $resourceClass, string $operationName): void
    39. 

  39.     {
    40. 

  40.         if (Access::class !== $resourceClass) {
    41. 

  41.             return;
    42. 

  42.         }
    43. 

  43. 

  44.         /** @var Access $currentUser */
    45. 

  45.         $currentUser = $this->security->getUser();
    46. 

  46.         $rootAlias = $queryBuilder->getRootAliases()[0];
    47. 

  47.         $queryBuilder->andWhere(sprintf('%s.organization = :current_organization', $rootAlias));
    48. 

  48.         $queryBuilder->setParameter('current_organization', $currentUser->getOrganization());
    49. 

  49. 

  50.         $this->handleAccessExtension->addWhere($queryBuilder, $operationName);
    51. 

  51.     }
    52. 

  52. }
    53.