<?phpnamespace App\Security\Authorization\Voter;use App\Entity\User;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;class UserVoter extends Voter{ const CREATE = 'create'; const READ = 'read'; const UPDATE = 'update'; const UPGRADE = 'upgrade'; const DELETE = 'delete'; /** * {@inheritDoc} */ protected function supports($attribute, $subject) { $attributes = [ self::CREATE, self::READ, self::UPDATE, self::UPGRADE, self::DELETE, ]; if (!in_array($attribute, $attributes)) { return false; } if (!$subject instanceof User) { return false; } return true; } /** * {@inheritDoc} */ protected function voteOnAttribute($attribute, $subject, TokenInterface $token) { $user = $token->getUser(); if (!$user instanceof User) { return false; } if ($user->isSuperAdmin()) { return true; } switch ($attribute) { case self::UPDATE: if ($user === $subject) { return true; } break; case self::READ: return true; } return false; }}