src/Security/Authorization/Voter/ReportVoter.php line 13

  1. <?php
  3. namespace App\Security\Authorization\Voter;
  5. use App\Entity\User;
  6. use App\Service\Report\DeliveredItemsReport;
  7. use App\Service\Report\OfferReport;
  8. use App\Service\Report\ReportInterface;
  9. use App\Service\Report\SupportCaseReport;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  13. class ReportVoter extends Voter
  14. {
  15. const READ = 'read';
  17. /**
  18. * {@inheritDoc}
  19. */
  20. protected function supports(string $attribute, $subject): bool
  21. {
  22. if ($attribute != self::READ) {
  23. return false;
  24. }
  25. if (is_string($subject)) {
  26. if (!(class_exists($subject) && is_a($subject, ReportInterface::class, true))) {
  27. return false;
  28. }
  29. } elseif (is_object($subject)) {
  30. if (!($subject instanceof ReportInterface)) {
  31. return false;
  32. }
  33. }
  35. return true;
  36. }
  38. /**
  39. * {@inheritDoc}
  40. */
  41. protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool
  42. {
  43. $user = $token->getUser();
  45. if (!($user instanceof User)) {
  46. return false;
  47. }
  49. if (is_object($subject)) {
  50. $subject = get_class($subject);
  51. }
  52. /* @var string $reportClass */
  53. $reportClass = $subject;
  55. switch ($attribute) {
  56. case self::READ:
  57. if (in_array($reportClass, [OfferReport::class, SupportCaseReport::class, DeliveredItemsReport::class])) {
  58. return true;
  59. }
  60. if ($user->isSuperAdmin()) {
  61. return true;
  62. }
  63. break;
  64. }
  66. return false;
  67. }
  68. }