src/Voter/User/UserCommercantVoter.php line 12

  1. <?php
  3. namespace App\Voter\User;
  5. use App\Entity\User\UserCommercant;
  6. use App\Repository\User\UserStatutRepository;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  9. use Symfony\Bundle\SecurityBundle\Security;
  10. use Symfony\Component\Security\Core\User\UserInterface;
  12. class UserCommercantVoter extends Voter
  13. {
  14.     const INDEX 'user_user_commercant_index';
  15.     const FICHE 'user_user_commercant_fiche';
  16.     const ADD 'user_user_commercant_add';
  17.     const EDIT 'user_user_commercant_edit';
  18.     const DELETE 'user_user_commercant_delete';
  20.     const ATTRIBUTES = [
  21.         self::INDEX,
  22.         self::FICHE,
  23.         self::ADD,
  24.         self::EDIT,
  25.         self::DELETE,
  26.     ];
  28.     /**
  29.      * @var Security
  30.      */
  31.     private $theSecurity;
  34.     public function __construct(Security $theSecurity)
  35.     {
  36.         $this->theSecurity $theSecurity;
  37.     }
  39.     protected function supports(string $attribute$subject): bool
  40.     {
  41.         if (!in_array($attributeself::ATTRIBUTES)) {
  42.             return false;
  43.         }
  44.         if (
  45.             !$subject instanceof UserCommercant &&
  46.             (($attribute != self::INDEX || $attribute != self::ADD) && $subject != null)
  47.         ) {
  48.             return false;
  49.         }
  50.         return true;
  51.     }
  53.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  54.     {
  56.         $theUserCurrent $token->getUser();
  58.         if (!$theUserCurrent instanceof UserInterface) {
  59.             return false;
  60.         }
  62.         /** @var UserCommercant $theUserCommercant */
  63.         $theUserCommercant $subject;
  65.         switch ($attribute) {
  66.             case self::INDEX:
  67.                 return $this->accessIndex();
  68.             case self::FICHE:
  69.                 return $this->accessFiche($theUserCommercant);
  70.             case self::ADD:
  71.                 return $this->accessAdd();
  72.             case self::EDIT:
  73.                 return $this->accessEdit($theUserCommercant);
  74.             case self::DELETE:
  75.                 return $this->accessDelete($theUserCommercant);
  76.             default:
  77.                 return false;
  78.         }
  79.     }
  81.     protected function accessUser()
  82.     {
  83.         return $this->theSecurity->getUser()->getTheStatut()->getId() == UserStatutRepository::DATA['actif'];
  84.     }
  85.     
  86.     protected function accessAdmin()
  87.     {
  88.         return
  89.             $this->theSecurity->isGranted('ROLE_ADMIN');
  90.     }
  92.     protected function accessCommercant(?UserCommercant $theUserCommercant null)
  93.     {
  94.         return
  95.             $this->accessUser()
  96.             && $this->theSecurity->isGranted('ROLE_COMMERCANT')
  97.             && (
  98.                 $theUserCommercant != null
  99.                 && $theUserCommercant->getId() == $this->theSecurity->getUser()->getId()
  100.             );
  101.     }
  103.     protected function accessWrite(?UserCommercant $theUserCommercant null)
  104.     {
  105.         return
  106.             $this->accessRead($theUserCommercant);
  107.     }
  109.     protected function accessRead(?UserCommercant $theUserCommercant null)
  110.     {
  111.         return
  112.             $this->accessAdmin()
  113.             || $this->accessCommercant($theUserCommercant);
  114.     }
  116.     protected function accessIndex() : bool
  117.     {
  118.         return $this->accessRead();
  119.     }
  121.     protected function accessFiche(UserCommercant $theUserCommercant) : bool
  122.     {
  123.         return $this->accessRead($theUserCommercant);
  124.     }
  126.     protected function accessAdd() : bool
  127.     {
  128.         return $this->accessWrite();
  129.     }
  131.     protected function accessEdit(UserCommercant $theUserCommercant) : bool
  132.     {
  133.         return $this->accessWrite($theUserCommercant);
  134.     }
  136.     protected function accessDelete(UserCommercant $theUserCommercant) : bool
  137.     {
  138.         return $this->accessWrite($theUserCommercant);
  139.     }
  140. }