src/V4/Voters/ProspectVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace App\V4\Voters;
  5. use App\Security\User;
  6. use LogicException;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  9. use Symfony\Component\Security\Core\Security;
  11. class ProspectVoter extends Voter
  12. {
  13.     const PROSPECT_MANAGE_LIST 'prospect_manage_list';
  14.     const PROSPECT_SHOW_LIST 'prospect_show_list';
  15.     const PROSPECT_ADD_EDIT 'prospect_add_edit';
  16.     const PROSPECT_MANAGE_FIELDS 'prospect_manage_fields';
  17.     const PROSPECT_STATE_ADD_EDIT 'prospect_state_add_edit';
  19.     /**
  20.      * @var Security
  21.      */
  22.     private $security;
  24.     public function __construct(Security $security)
  25.     {
  26.         $this->security $security;
  27.     }
  29.     /**
  30.      * @param $attribute
  31.      * @param $subject
  32.      *
  33.      * @return bool
  34.      */
  35.     protected function supports($attribute$subject): bool
  36.     {
  37.         return in_array($attribute, [
  38.             self::PROSPECT_MANAGE_LIST,
  39.             self::PROSPECT_SHOW_LIST,
  40.             self::PROSPECT_ADD_EDIT,
  41.             self::PROSPECT_MANAGE_FIELDS,
  42.             self::PROSPECT_STATE_ADD_EDIT,
  43.         ], true);
  44.     }
  46.     /**
  47.      * @param $attribute
  48.      * @param $subject
  49.      * @param TokenInterface $token
  50.      *
  51.      * @return bool
  52.      *
  53.      * @throws LogicException
  54.      */
  55.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  56.     {
  57.         $user $token->getUser();
  58.         if (!$user instanceof User) {
  59.             return false;
  60.         }
  62.         switch ($attribute) {
  63.             case self::PROSPECT_MANAGE_LIST:
  64.                 return $this->canProspectManageList();
  65.             case self::PROSPECT_SHOW_LIST:
  66.                 return $this->canProspectShowList();
  67.             case self::PROSPECT_ADD_EDIT:
  68.                 return $this->canProspectAddEdit();
  69.             case self::PROSPECT_MANAGE_FIELDS:
  70.                 return $this->canProspectManageFields();
  71.             case self::PROSPECT_STATE_ADD_EDIT:
  72.                 return $this->canProspectStateAddEdit();
  73.         }
  75.         throw new LogicException('This should never happen');
  76.     }
  78.     private function canProspectManageList(): bool
  79.     {
  80.         return $this->canAccessProspect();
  81.     }
  83.     private function canProspectShowList(): bool
  84.     {
  85.         return $this->canAccessProspect();
  86.     }
  88.     private function canProspectAddEdit(): bool
  89.     {
  90.         return $this->canAccessProspect();
  91.     }
  93.     private function canProspectManageFields(): bool
  94.     {
  95.         return $this->canAccessProspect();
  96.     }
  98.     private function canProspectStateAddEdit(): bool
  99.     {
  100.         return $this->canAccessProspect();
  101.     }
  103.     /**
  104.      * @TODO: Si le client n'a pas le droit "prospect show", il peut tout de même voir les contacts qu'il gère.
  105.      *
  106.      * @return bool
  107.      */
  108.     private function canAccessProspect(): bool
  109.     {
  110.         return true;
  111.     }
  112. }