src/Security/Voter/ManageProjectVoter.php line 20

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Common\RoleInterface;
  6. use App\Entity\Project;
  7. use App\Entity\User;
  8. use App\Entity\UserProject;
  9. use App\Entity\UserWorkroom;
  10. use Doctrine\ORM\EntityManagerInterface;
  11. use Symfony\Component\HttpFoundation\RequestStack;
  12. use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBag;
  13. use Symfony\Component\HttpFoundation\Session\Session;
  14. use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
  15. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  16. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  17. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  18. use Symfony\Component\Security\Core\User\UserInterface;
  20. class ManageProjectVoter extends Voter
  21. {
  22.     private EntityManagerInterface $entityManager;
  23.     private RequestStack $requestStack;
  25.     public const ACTION_PROJECT 'action_project';
  26.     public const ACTION_PROJECT_CDP_WL 'action_project_cdp_wl';
  28.     protected array $attributes = [
  29.         self::ACTION_PROJECT,
  30.         self::ACTION_PROJECT_CDP_WL,
  31.     ];
  33.     protected AuthorizationCheckerInterface $authChecker;
  35.     public function __construct(AuthorizationCheckerInterface $authCheckerEntityManagerInterface $entityManagerRequestStack $requestStack)
  36.     {
  37.         $this->authChecker $authChecker;
  38.         $this->entityManager $entityManager;
  39.         $this->requestStack $requestStack;
  40.     }
  42.     private function getCurrentProjectId()
  43.     {
  44.         $session $this->requestStack->getSession();
  45.         return $session->get('project_id');
  46.     }
  48.     protected function supports($attribute$subject): bool
  49.     {
  50.         if (!\in_array($attribute$this->attributes)) {
  51.             return false;
  52.         }
  54.         return true;
  55.     }
  57.     /**
  58.      * @param mixed $subject
  59.      */
  60.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  61.     {
  62.         $user $token->getUser();
  64.         if (!$user instanceof UserInterface) {
  65.             return false;
  66.         }
  68.         switch ($attribute) {
  69.             case self::ACTION_PROJECT:
  70.                 return $this->canDoActionOnProject($user->getId());
  71.             case self::ACTION_PROJECT_CDP_WL:
  72.                 return $this->canDoActionOnProjectByCdpAndWl($user->getId());
  73.             default:
  74.                 return false;
  75.         }
  76.     }
  78.     public function canDoActionOnProject(int $id): bool
  79.     {
  80.         $projectId $this->getCurrentProjectId();
  82.         return true == $this->entityManager->getRepository(UserProject::class)->checkIfProjectManagerInProject($id$projectId);
  83.     }
  85.     public function canDoActionOnProjectByCdpAndWl(int $id): bool
  86.     {
  87.         $projectId $this->getCurrentProjectId();
  89.         if ($this->entityManager->getRepository(UserProject::class)->checkIfProjectManagerInProject($id$projectId)) {
  90.             return true;
  91.         }
  93.         $repoProject $this->entityManager->getRepository(Project::class);
  94.         /** @var Project $project */
  95.         $project $repoProject->find($projectId);
  96.         $repoUser $this->entityManager->getRepository(User::class);
  97.         /** @var User $user */
  98.         $user $repoUser->find($id);
  100.         $workroomsOfProject $project->getWorkroomsIds();
  101.         $workroomsOfUser $user->getUserWorkrooms();
  103.         foreach ($workroomsOfUser as $workroomUser) {
  104.             if (in_array($workroomUser->getWorkroom()->getId(), $workroomsOfProject)) {
  105.                 if ($workroomUser->getRole() == RoleInterface::ROLE_LEADER_WORKROOM_INT) {
  106.                     return true;
  107.                 }
  108.             }
  109.         }
  111.         return false;
  112.     }
  113. }