src/Security/ProjectBoardChatVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\Assignment;
  6. use App\Modules\Chat\Entity\Project\Board;
  7. use App\Entity\User;
  8. use App\Repository\AssignmentRepository;
  9. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  10. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  12. class ProjectBoardChatVoter extends Voter
  13. {
  14.     const ATTRIBUTES = [self::ATTR_ASSIGNEDself::ATTR_WRITE];
  16.     const ATTR_ASSIGNED 'CHAT_ASSIGNED';
  17.     const ATTR_WRITE    'CHAT_WRITE';
  19.     /**
  20.      * @var AssignmentRepository
  21.      */
  22.     private $assignmentRepository;
  24.     public function __construct(AssignmentRepository $assignmentRepository)
  25.     {
  26.         $this->assignmentRepository $assignmentRepository;
  27.     }
  29.     /**
  30.      * Determines if the attribute and subject are supported by this voter.
  31.      *
  32.      * @param string $attribute An attribute
  33.      * @param mixed $subject The subject to secure, e.g. an object the user wants to access or any other PHP type
  34.      *
  35.      * @return bool True if the attribute and subject are supported, false otherwise
  36.      */
  37.     protected function supports($attribute$subject)
  38.     {
  39.         return $subject instanceof Board && in_array($attribute, static::ATTRIBUTES);
  40.     }
  42.     /**
  43.      * Perform a single access check operation on a given attribute, subject and token.
  44.      * It is safe to assume that $attribute and $subject already passed the "supports()" method check.
  45.      *
  46.      * @param string $attribute
  47.      * @param mixed $subject
  48.      * @param TokenInterface $token
  49.      *
  50.      * @return bool
  51.      */
  52.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  53.     {
  54.         /**
  55.          * @var Board $subject
  56.          * @var User                                   $user
  57.          */
  58.         $user $token->getUser();
  60.         switch ($attribute) {
  61.             case static::ATTR_ASSIGNED:
  62.                 $vote = ($user === $subject->getClient() or $this->isAssigned($subject$user));
  63.                 break;
  64.             case static::ATTR_WRITE:
  65. //                $vote = ($user === $subject->getClient());
  66.                 $vote = ($user === $subject->getClient() or $this->isAssigned($subject$user));
  67.                 break;
  68.             default:
  69.                 $vote false;
  70.         }
  72.         return $vote;
  73.     }
  75.     /**
  76.      * @param Board $chat
  77.      * @param User                                   $user
  78.      *
  79.      * @return bool
  80.      */
  81.     private function isAssigned(Board $chatUser $user): bool
  82.     {
  83.         $assignment $this->assignmentRepository->findOneBy(
  84.             [
  85.                 'task'   => $chat->getProject()
  86.                     ->getTasks()
  87.                     ->toArray(),
  88.                 'user'   => $user,
  89.                 'status' => [
  90.                     Assignment::STATUS_COMPLETED,
  91.                     Assignment::STATUS_PROGRESS,
  92.                     Assignment::STATUS_REQUEST,
  93.                     Assignment::STATUS_REJECTED,
  94.                     Assignment::STATUS_REVIEW,
  95.                 ],
  96.             ]
  97.         );
  99.         return !empty($assignment);
  100.     }
  101. }