src/Infrastructure/Security/Voter/ToastSessionVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Infrastructure\Security\Voter;
  5. use App\Database\Domain\Entity\Sessions\ToastSession;
  6. use App\Database\Domain\Entity\User\User;
  7. use App\Database\Domain\Repository\CollaboratedSessionRepository;
  8. use App\Database\Domain\Repository\ToastSessionRepository;
  9. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  10. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  12. class ToastSessionVoter extends Voter
  13. {
  14.     public const ACCESS_BY_ROLE 'toast_session.access_by_role';
  15.     public const ACCESS 'toast_session.access';
  16.     public const ACCESS_WITH_COLLABORATORS 'toast_session.access_with_collaborators';
  17.     public const ACCESS_BY_IDS 'toast_session.access_by_ids';
  19.     private CollaboratedSessionRepository $collaboratedSessionRepository;
  21.     public function __construct(CollaboratedSessionRepository $collaboratedSessionRepository)
  22.     {
  23.         $this->collaboratedSessionRepository $collaboratedSessionRepository;
  24.     }
  26.     protected function supports(string $attribute$subject): bool
  27.     {
  28.         return in_array($attribute, [self::ACCESSself::ACCESS_BY_IDSself::ACCESS_WITH_COLLABORATORSself::ACCESS_BY_ROLE]);
  29.     }
  31.     /**
  32.      * @param ToastSession $subject
  33.      */
  34.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  35.     {
  36.         /** @var User $user */
  37.         $user $token->getUser();
  39.         if (!$user instanceof User) {
  40.             return false;
  41.         }
  43.         if ($attribute === self::ACCESS_BY_ROLE) {
  44.             return $user->isFullUser() || $user->isPartialUser();
  45.         }
  47.         if ($attribute === self::ACCESS) {
  48.             return $user->getId() === $subject->getUser()->getId();
  49.         }
  51.         if ($attribute === self::ACCESS_WITH_COLLABORATORS) {
  52.             $collaboratedSession $this->collaboratedSessionRepository->findBy(['session' => $subject'collaboratedUser' => $user]);
  54.             if (count($collaboratedSession)) {
  55.                 return true;
  56.             }
  58.             return $user->getId() === $subject->getUser()->getId();
  59.         }
  61.         if ($attribute === self::ACCESS_BY_IDS) {
  62.             foreach ($subject as $uuid) {
  63.                 if (!in_array($uuid$user->getSessions()->toArray())) { // Checking if all sessions belong to the user
  64.                     $collaboratedSession $this->collaboratedSessionRepository->findBy(['session' => $subject'collaboratedUser' => $user]);
  65.                     if (null !== $collaboratedSession) {
  66.                         continue;
  67.                     }
  69.                     return false;
  70.                 }
  71.             }
  73.             return true;
  74.         }
  76.         return false;
  77.     }
  78. }