src/Security/Voter/ForumVoter.php line 15

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Forum;
  6. use App\Entity\ForumAccess;
  7. use App\Entity\ForumMessage;
  8. use App\Entity\User;
  9. use App\EntityManager\ForumAccessManager;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
  12. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  13. use Symfony\Component\Security\Core\Security;
  15. class ForumVoter extends Voter
  16. {
  17.     const VIEW         'view';
  18.     const CREATE_TOPIC 'create_topic';
  19.     const MODERATE     'moderate';
  21.     protected $security;
  22.     protected $forumAccessManager;
  23.     protected $userForumAccess null;
  24.     protected $forumAccess     null;
  26.     public function __construct(Security $securityForumAccessManager $forumAccessManager)
  27.     {
  28.         $this->security           $security;
  29.         $this->forumAccessManager $forumAccessManager;
  30.     }
  32.     protected function supports($attribute$subject)
  33.     {
  34.         if (!in_array($attribute, [self::VIEWself::CREATE_TOPICself::MODERATE])) {
  35.             return false;
  36.         }
  38.         if (!$subject instanceof Forum && !$subject instanceof ForumMessage) {
  39.             return false;
  40.         }
  42.         return true;
  43.     }
  45.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  46.     {
  47.         $user $token->getUser();
  49.         if (!$user instanceof User) {
  50.             $user null;
  51.         }
  53.         /** @var Forum $forum */
  54.         $forum $subject instanceof ForumMessage $subject->getForum() : $subject;
  56.         if (is_null($this->forumAccess)) {
  57.             $this->userForumAccess $this->forumAccessManager->getForumAccessForCurrentUser($forum);
  58.             $this->forumAccess     $this->forumAccessManager->getForumAccess($forum);
  59.         }
  61.         switch ($attribute) {
  62.             case self::VIEW:
  63.                 return $this->canView($forum$user$token);
  64.             case self::CREATE_TOPIC:
  65.                 return $this->canCreateTopic($forum$user$token);
  66.             case self::MODERATE:
  67.                 return $this->canModerate($forum$user$token);
  68.         }
  70.         throw new \LogicException('This code should not be reached!');
  71.     }
  73.     private function canView(Forum $forumUser $user nullTokenInterface $token null)
  74.     {
  75.         return (
  76.             ($this->forumAccess instanceof ForumAccess && $this->forumAccess->getListMessage()) ||
  77.             ($this->userForumAccess instanceof ForumAccess && $this->userForumAccess->getListMessage())
  78.         );
  79.     }
  81.     private function canCreateTopic(Forum $forumUser $user nullTokenInterface $token null)
  82.     {
  83.         return (
  84.             $user instanceof User &&
  85.             ($this->forumAccess instanceof ForumAccess && $this->forumAccess->getAddMessage()) ||
  86.             ($this->userForumAccess instanceof ForumAccess && $this->userForumAccess->getAddMessage())
  87.         );
  88.     }
  90.     private function canModerate(Forum $forumUser $user nullTokenInterface $token null)
  91.     {
  92.         return $user instanceof User &&
  93.             $this->userForumAccess instanceof ForumAccess &&
  94.             $this->userForumAccess->getModMessage();
  95.     }
  96. }