src/Security/Voter/CommandeVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\User;
  6. use App\Entity\Commande;
  7. use Symfony\Component\Security\Core\Security;
  8. use Symfony\Component\Security\Core\User\UserInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  12. class CommandeVoter extends Voter
  13. {
  14. public const EDIT = 'COMMANDE_EDIT';
  15. public const VIEW = 'COMMANDE_VIEW';
  16. public const DELETE = 'COMMANDE_DELETE';
  17. private $security;
  19. public function __construct(Security $security)
  20. {
  21. $this->security = $security;
  22. }
  24. protected function supports(string $attribute, $commande): bool
  25. {
  26. // replace with your own logic
  27. // https://symfony.com/doc/current/security/voters.html
  28. return in_array($attribute, [self::EDIT, self::VIEW, self::DELETE])
  29. && $commande instanceof \App\Entity\Commande;
  30. }
  32. protected function voteOnAttribute(string $attribute, $commande, TokenInterface $token): bool
  33. {
  34. $user = $token->getUser();
  35. // if the user is anonymous, do not grant access
  36. if (!$user instanceof UserInterface) {
  37. return false;
  38. }
  40. //On vérifie si l'utilisateur est admin
  41. if($this->security->isGranted('ROLE_ADMIN'))
  42. {
  43. return true;
  44. }
  46. // ... (check conditions and return true to grant permission) ...
  47. switch ($attribute) {
  48. case self::EDIT:
  49. // on vérifie si on peut éditer
  50. return $this->canEdit($commande, $user);
  51. break;
  52. case self::VIEW:
  53. // on vérifie si on peut visualiser
  54. return $this->canView($commande, $user);
  55. break;
  56. case self::DELETE:
  57. // on vérifie si on peut supprimer
  58. return $this->canDelete($commande, $user);
  59. break;
  60. }
  62. return false;
  63. }
  65. public function canEdit(Commande $commande, User $user)
  66. {
  67. if($this->security->isGranted('ROLE_FOODTRUCK'))
  68. {
  69. return in_array($commande->getService()->getFoodtruck(), $user->getFoodtrucks()->toArray());
  70. }
  72. return false;
  73. }
  75. public function canView(Commande $commande, User $user)
  76. {
  77. if($this->security->isGranted('ROLE_FOODTRUCK'))
  78. {
  79. return in_array($commande->getService()->getFoodtruck(), $user->getFoodtrucks()->toArray());
  80. }
  82. if($this->security->isGranted('ROLE_USER'))
  83. {
  84. return $user === $commande->getUser();
  85. }
  87. return false;
  88. }
  90. public function canDelete(Commande $commande, User $user)
  91. {
  92. if($this->security->isGranted('ROLE_FOODTRUCK'))
  93. {
  94. return in_array($commande->getService()->getFoodtruck(), $user->getFoodtrucks()->toArray());
  95. }
  97. return false;
  98. }
  99. }