src/Security/Authorization/Voter/SecretVoter.php line 8

Open in your IDE?
  1. <?php
  3. namespace App\Security\Authorization\Voter;
  4.  
  5. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  6. use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  7.  
  8. class SecretVoter implements VoterInterface
  9. {
  10.     const VIEW 'VIEW';
  11.     const EDIT 'EDIT';
  12.     const DELETE 'DELETE';
  13.     const CREATE 'CREATE';
  14.     const LIST = 'LIST';
  15.  
  16.     public function supportsAttribute($attribute)
  17.     {
  18.  
  19.         return in_array($attribute, array(
  20.             self::VIEW,
  21.             self::EDIT,
  22.             self::DELETE,
  23.             self::CREATE,
  24.             self::LIST,
  25.         ));
  26.     }
  27.  
  28.     public function supportsClass($class)
  29.     {
  30.  
  31.         $supportedClass 'App\Entity\Secret';
  32.  
  33.         if (is_string($class)) {
  34.             if ($class === $supportedClass) {
  35.                 return true;
  36.             } else {
  37.                 return false;
  38.             }
  39.         }
  40.         if(is_null($class)) {
  41.             return true;
  42.         }
  43.         return $supportedClass === get_class($class) || is_subclass_of(get_class($class), $supportedClass);
  44.     }
  45.  
  46.  
  47.     public function vote(TokenInterface $token$entity, array $attributes)
  48.     {
  50.         $user $token->getUser();
  51.         if (!is_object($user)) {
  52.             return VoterInterface::ACCESS_DENIED;
  53.         }
  54.  
  55.         if (!$this->supportsClass($entity)) {
  57.             return VoterInterface::ACCESS_ABSTAIN;
  58.         }
  59.         $attribute $attributes[0];
  60.         if(is_array($attribute)) {
  61.             $attribute $attribute[0];
  62.         };
  63. // kalydig 2022.01.25
  66.         if($user->hasRole("SuperUsers")) {
  67.             return VoterInterface::ACCESS_GRANTED;
  68.         }
  70. //kalydi
  73.         switch($attribute) {
  74.             case self::LIST:
  75.                 return VoterInterface::ACCESS_GRANTED;
  76.                 break;
  77.             case self::VIEW:
  78.                 if($entity->getEnvironmentType()->getName() != "prod") {
  79.                     return VoterInterface::ACCESS_GRANTED;
  80.                 } elseif($user->hasRole("SuperUsers") || $user->hasRole("Deliveries") || $user->hasRole("CSMs")) {
  81.                     return VoterInterface::ACCESS_GRANTED;
  82.                 }  else {
  83.                     return VoterInterface::ACCESS_DENIED;
  84.                 }
  85.                 break;
  86.             case self::DELETE:
  87.                 if($user->hasRole("SuperUsers")) {
  88.                     return VoterInterface::ACCESS_GRANTED;
  89.                 } else {
  90.                     return VoterInterface::ACCESS_DENIED;
  91.                 }
  92.                 break;
  93.             case self::EDIT:
  94.                 if($entity->getEnvironmentType()->getName() != "prod") {
  95.                     return VoterInterface::ACCESS_GRANTED;
  96.                 } elseif($user->hasRole("SuperUsers") || $user->hasRole("Deliveries")) {
  97.                     return VoterInterface::ACCESS_GRANTED;
  98.                 }  else {
  99.                 return VoterInterface::ACCESS_DENIED;
  100.                }
  101.                 break;
  102.             case self::CREATE:
  103.                 if($user->hasRole("SuperUsers") || $user->hasRole("Deliveries")) {
  104.                     return VoterInterface::ACCESS_GRANTED;
  105.                 } else {
  106.                     return VoterInterface::ACCESS_DENIED;
  107.                 }
  108.                 break;
  109.         }
  110. // kalydig 2022.01.25
  111.         return VoterInterface::ACCESS_DENIED;
  112.     }
  113. }