src/Security/Voter/GalleryVoter.php line 10

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\User;
  6. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  7. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  8. use Symfony\Component\Security\Core\Security;
  10. class GalleryVoter extends Voter
  11. {
  12.     const EDIT 'edit';
  13.     const MANAGE 'manage';
  15.     private $security;
  17.     public function __construct(Security $security)
  18.     {
  19.         $this->security $security;
  20.     }
  22.     protected function supports($attribute$subject)
  23.     {
  24.         if (!in_array($attribute, [self::EDITself::MANAGE])) {
  25.             return false;
  26.         }
  28.         if (!$subject instanceof User) {
  29.             return false;
  30.         }
  32.         return true;
  33.     }
  35.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  36.     {
  37.         $currentUser $token->getUser();
  39.         if (!$currentUser instanceof User) {
  40.             return false;
  41.         }
  43.         /** @var User $user */
  44.         $user $subject;
  46.         if ($this->security->isGranted(User::ROLE_SUPER_ADMIN)) {
  47.             return true;
  48.         }
  50.         switch ($attribute) {
  51.             case self::EDIT:
  52.             case self::MANAGE:
  53.                 return $this->canEdit($user$currentUser$token);
  54.         }
  56.         throw new \LogicException('This code should not be reached!');
  57.     }
  59.     private function canEdit(User $userUser $currentUserTokenInterface $token)
  60.     {
  61.         return $user === $currentUser || $this->security->isGranted(User::ROLE_GALLERY_ADMIN);
  62.     }
  63. }