src/Evo/Application/Security/Voter/UserVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace Evo\Application\Security\Voter;
  5. use Evo\Application\Security\Permissions;
  6. use Evo\Infrastructure\MappingORM\User;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  9. use Symfony\Component\Security\Core\Security;
  11. class UserVoter extends Voter
  12. {
  13.     private const SUPPORTED_ATTRIBUTES = [
  14.         Permissions::USER_DETAILS,
  15.         Permissions::USER_EDIT,
  16.     ];
  18.     private Security $security;
  20.     public function __construct(Security $security)
  21.     {
  22.         $this->security $security;
  23.     }
  25.     protected function supports(string $attribute$subject): bool
  26.     {
  27.         return $subject instanceof User && \in_array($attributeself::SUPPORTED_ATTRIBUTEStrue);
  28.     }
  30.     /**
  31.      * @param User $subject
  32.      */
  33.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  34.     {
  35.         $loggedUser $token->getUser();
  37.         if (false === $loggedUser instanceof User) {
  38.             return false;
  39.         }
  41.         return $subject->getId() === $loggedUser->getId() || $this->security->isGranted('ROLE_ADMIN'$loggedUser);
  42.     }
  43. }