src/Bundles/ReportBundle/Security/ReportTemplateViewVoter.php line 16

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Bundles\ReportBundle\Security;
  7. use App\Bundles\OrganizationBundle\Exception\UserOrganizationNotFoundException;
  8. use App\Bundles\OrganizationBundle\Service\UserOrganization\UserOrganizationProvider;
  9. use App\Bundles\ReportBundle\Entity\ReportTemplate;
  10. use App\Bundles\UserBundle\Entity\User;
  11. use App\Bundles\UserBundle\Enum\SystemPermissionEnum;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  14. use Symfony\Component\Security\Core\Security;
  16. class ReportTemplateViewVoter extends Voter
  17. {
  18.     public function __construct(
  19.         private readonly Security $security,
  20.         private readonly UserOrganizationProvider $userOrganizationProvider,
  21.     ) {
  22.     }
  24.     protected function supports(string $attribute$subject): bool
  25.     {
  26.         return $attribute === SystemPermissionEnum::SINGLE_REPORT_TEMPLATE_VIEW->value;
  27.     }
  29.     /** @param ReportTemplate $subject
  30.      * @throws UserOrganizationNotFoundException
  31.      */
  32.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  33.     {
  34.         $user $this->security->getUser();
  36.         if (!$user instanceof User) {
  37.             return false;
  38.         }
  40.         if ($subject->getUser() === $user) {
  41.             return true;
  42.         }
  44.         $organization $this->userOrganizationProvider->provideFromSession()->getOrganization();
  46.         if ($organization === $subject->getOrganization() and $subject->isShared()) {
  47.             return true;
  48.         }
  50.         return false;
  51.     }
  52. }