src/Infrastructure/Security/Voter/ToastSessionVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace App\Infrastructure\Security\Voter;
  5. use App\Database\Domain\Entity\Sessions\ToastSession;
  6. use App\Database\Domain\Entity\User\User;
  7. use App\Database\Domain\Repository\CollaboratedSessionRepository;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  11. class ToastSessionVoter extends Voter
  12. {
  13.     public const ACCESS_BY_ROLE 'toast_session.access_by_role';
  14.     public const ACCESS 'toast_session.access';
  15.     public const ACCESS_WITH_COLLABORATORS 'toast_session.access_with_collaborators';
  16.     public const ACCESS_BY_IDS 'toast_session.access_by_ids';
  18.     private CollaboratedSessionRepository $collaboratedSessionRepository;
  20.     public function __construct(CollaboratedSessionRepository $collaboratedSessionRepository)
  21.     {
  22.         $this->collaboratedSessionRepository $collaboratedSessionRepository;
  23.     }
  25.     protected function supports(string $attribute$subject): bool
  26.     {
  27.         return in_array($attribute, [self::ACCESSself::ACCESS_BY_IDSself::ACCESS_WITH_COLLABORATORSself::ACCESS_BY_ROLE]);
  28.     }
  30.     /**
  31.      * @param ToastSession $subject
  32.      */
  33.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  34.     {
  35.         /** @var User $user */
  36.         $user $token->getUser();
  38.         if (!$user instanceof User) {
  39.             return false;
  40.         }
  42.         if ($attribute === self::ACCESS_BY_ROLE) {
  43.             return $user->isFullUser() || $user->isPartialUser();
  44.         }
  46.         if ($attribute === self::ACCESS) {
  47.             return $user->getId() === $subject->getUser()->getId();
  48.         }
  50.         if ($attribute === self::ACCESS_WITH_COLLABORATORS) {
  51.             $collaboratedSession $this->collaboratedSessionRepository->findBy(['session' => $subject'collaboratedUser' => $user]);
  53.             if (count($collaboratedSession)) {
  54.                 return true;
  55.             }
  57.             return $user->getId() === $subject->getUser()->getId();
  58.         }
  60.         if ($attribute === self::ACCESS_BY_IDS) {
  61.             foreach ($subject as $uuid) {
  62.                 if (!in_array($uuid$user->getSessions()->toArray())) { // Checking if all sessions belong to the user
  63.                     $collaboratedSession $this->collaboratedSessionRepository->findBy(['session' => $subject'collaboratedUser' => $user]);
  64.                     if (null !== $collaboratedSession) {
  65.                         continue;
  66.                     }
  68.                     return false;
  69.                 }
  70.             }
  72.             return true;
  73.         }
  75.         return false;
  76.     }
  77. }