src/Security/Voters/Organisation/Profile.php line 12

  1. <?php
  3. namespace App\Security\Voters\Organisation;
  5. use App\Entity\Organisation\Organisation;
  6. use App\Entity\Organisation\User;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. use Symfony\Component\Security\Core\Security;
  12. class Profile extends Voter
  13. {
  14.     public const PROFILE_EDIT 'org_profile_edit';
  15.     public const PROFILE_PRIVILEGES 'org_privileges';
  16.     public const PROFILE_SUCCESS_HISTORY 'org_success_history';
  17.     public const PROFILE_LINK 'org_profile_link';
  18.     /**
  19.      * @var Security
  20.      */
  21.     private $security;
  22.     /**
  23.      * @var EntityManagerInterface
  24.      */
  25.     private $em;
  28.     public function __construct(Security $securityEntityManagerInterface $em)
  29.     {
  30.         $this->security $security;
  31.         $this->em $em;
  32.     }
  34.     protected function supports(string $attribute$subject): bool
  35.     {
  36.         if ($subject instanceof Organisation) {
  37.             if (in_array($attribute, [self::PROFILE_EDITself::PROFILE_PRIVILEGESself::PROFILE_SUCCESS_HISTORY,])) {
  38.                 return true;
  39.             }
  40.         }
  41. //        if ($subject instanceof \App\Entity\User\User) {
  42.         if ($this->security->getUser()) {
  43.             if (in_array($attribute, [self::PROFILE_LINK])) {
  44.                 return true;
  45.             }
  46.         }
  48. //        }
  49.         return false;
  50.     }
  52.     /**
  53.      * @param string $attribute
  54.      * @param Organisation $subject
  55.      * @param TokenInterface $token
  56.      * @return bool
  57.      */
  58.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  59.     {
  60.         switch ($attribute) {
  61.             case self::PROFILE_EDIT:
  62.                 return $this->profileEdit($subject);
  63.             case self::PROFILE_LINK:
  64.                 return $this->profileLink();
  65.             case self::PROFILE_PRIVILEGES:
  66.                 return $this->havePrivileges($subject);
  67.             case self::PROFILE_SUCCESS_HISTORY:
  68.                 return $this->haveSuccessHistory($subject);
  69.         }
  70.         throw new \LogicException('This code should not be reached!');
  71.     }
  73.     /**
  74.      * @param Organisation $subject
  75.      * @return bool
  76.      */
  77.     protected function profileEdit(Organisation $subject): bool
  78.     {
  79.         /** @var \App\Entity\User\User $user */
  80.         $user $this->security->getUser();
  81.         if ($subject->isDeleted() || !$user) {
  82.             return false;
  83.         }
  84.         $orgUser $this->em->getRepository(User::class)->findByUser($user->getId());
  85.         if (!$orgUser) {
  86.             return false;
  87.         }
  89.         return $orgUser->getOrganisation()->getId() == $subject->getId();
  90.     }
  92.     private function profileLink()
  93.     {
  94.         $subject $this->security->getUser();
  95.         $orgUser $this->em->getRepository(User::class)->findByUser($subject->getId());
  96.         if (!$orgUser) {
  97.             return false;
  98.         }
  99.         if ($orgUser->getOrganisation()->isDeleted()) {
  100.             return false;
  101.         }
  103.         return true;
  104.     }
  106.     private function havePrivileges(Organisation $subject)
  107.     {
  108.         if (in_array($subject->getTypeString(), [$subject::TYPE_VUZ])) {
  109.             return true;
  110.         }
  111.         return false;
  112.     }
  114.     private function haveSuccessHistory(Organisation $subject)
  115.     {
  116.         if (in_array($subject->getTypeString(), [$subject::TYPE_VUZ])) {
  117.             return true;
  118.         }
  119.         return false;
  120.     }
  121. }