src/Security/Voter/DemandVoter.php line 13

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Company;
  6. use App\Entity\CompanyDemand;
  7. use App\Entity\Demand;
  8. use App\Entity\User;
  9. use Doctrine\Common\Collections\Collection;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  13. class DemandVoter extends Voter
  14. {
  15.     protected function supports(string $attribute$subject): bool
  16.     {
  17.         // replace with your own logic
  18.         // https://symfony.com/doc/current/security/voters.html
  19.         return in_array($attribute, ['DEMAND_SHOW''DEMAND_UPLOAD''DEMAND_UPDATE''INTERVENTION_SHOW''ESTIMATE_SHOW'], true) && $subject instanceof Demand;
  20.     }
  22.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  23.     {
  24.         $user $token->getUser();
  26.         // if the user is anonymous, do not grant access
  27.         if (!$user instanceof User) {
  28.             return false;
  29.         }
  31.         /** @var Demand $demand */
  32.         $demand $subject;
  34.         /** @var Collection<CompanyDemand> $companyDemandAssigned */
  35.         $companyDemandAssigned $demand->getCompanyDemands()->filter(function (CompanyDemand $companyDemand) use ($user): bool {
  36.             return $companyDemand->getCompany() === $user->getCompanies()->first();
  37.         });
  39.         $companyDemandSelected $demand->getCompanyDemands()->filter(function (CompanyDemand $companyDemand) use ($user): bool {
  40.             return $companyDemand->getCompany() === $user->getCompanies()->first() && $companyDemand->getSelected() === true;
  41.         })->first();
  43.         // ... (check conditions and return true to grant permission) ...
  44.         switch ($attribute) {
  45.             case 'DEMAND_SHOW':
  46.                 return $demand->getUser() === $user;
  47.             case 'DEMAND_UPLOAD':
  48.                 // logic to determine if the user can EDIT
  49.                 // return true or false
  51.                 if ($demand->getUser() === $user) {
  52.                     if (
  53.                         $demand->getStatus() <= Demand::IN_PENDING_STATUS ||
  54.                         $demand->getStatus() === Demand::ON_GOING_STATUS ||
  55.                         $demand->getStatus() === Demand::COMPANY_POSTED_FEEDBACK_STATUS ||
  56.                         $demand->getStatus() === Demand::COMPLETE_STATUS
  57.                     ) {
  58.                         return true;
  59.                     }
  60.                 }
  62.                 if (in_array('ROLE_ADMIN'$user->getRoles(), true)) {
  63.                     return true;
  64.                 }
  66.                 if ($companyDemandAssigned->first()->getCompany()?->getUser() === $user) {
  67.                     if (
  68.                         $demand->getStatus() === Demand::ON_GOING_STATUS ||
  69.                         $demand->getStatus() === Demand::INTERVENTION_CONFIRMATION_STATUS ||
  70.                         $demand->getStatus() === Demand::SELECTED_COMPANY_STATUS ||
  71.                         $demand->getStatus() === Demand::USER_POSTED_FEEDBACK_STATUS ||
  72.                         $demand->getStatus() === Demand::COMPLETE_STATUS
  73.                     ) {
  74.                         return true;
  75.                     }
  76.                 }
  78.                 // no break
  79.             case 'DEMAND_UPDATE':
  80.                 // logic to determine if the user can VIEW
  81.                 // return true or false
  82.                 return $demand->getUser() === $user && $demand->getStatus() <= Demand::IN_PENDING_STATUS;
  84.             case 'INTERVENTION_SHOW':
  85.                 //Si la company est assigner a la demande
  86.                 if (!$companyDemandAssigned->isEmpty()) {
  87.                     //Si la company est selectionner
  88.                     if (!empty($companyDemandSelected)) {
  89.                         //Si le status de la demande est superieur à "En cours"
  90.                         if (
  91.                             $demand->getStatus() >= Demand::ON_GOING_STATUS
  92.                         ) {
  93.                             return true;
  94.                         }
  95.                     } else {
  96.                         //Si les status de la demande sont "Confirmation d'intervention" ou "Company sélectionner"
  97.                         if (
  98.                             $demand->getStatus() === Demand::INTERVENTION_CONFIRMATION_STATUS ||
  99.                             $demand->getStatus() === Demand::SELECTED_COMPANY_STATUS
  100.                         ) {
  101.                             return true;
  102.                         }
  103.                     }
  104.                 }
  105.         }
  107.         return false;
  108.     }
  109. }