<?phpnamespace App\Voters;use App\Model\Quote\Quote;use App\Security\SecurityConfig;use App\Security\User;use LogicException;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;/** * Class QuoteVoter. */final class QuoteVoter extends Voter{ /** * @param string $attribute * @param Quote $subject * * @return bool */ protected function supports($attribute, $subject): bool { if (!in_array($attribute, [ SecurityConfig::QUOTE_SHOW, SecurityConfig::QUOTE_CUD, SecurityConfig::MY_QUOTE_BY_DEFAULT, SecurityConfig::QUOTE_DUPLICATE, ], true)) { return false; } return true; } /** * @param string $attribute * @param Quote $subject * @param TokenInterface $token * * @return bool */ protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool { $user = $token->getUser(); if (!$user instanceof User) { return false; } switch ($attribute) { case SecurityConfig::QUOTE_SHOW: return $this->canViewQuote($user); case SecurityConfig::QUOTE_CUD: return $this->canCudQuote($user); case SecurityConfig::MY_QUOTE_BY_DEFAULT: return $this->hasHisQuoteByDefault($user); case SecurityConfig::QUOTE_DUPLICATE: return $this->canDuplicateQuote($user, $subject); } throw new LogicException('This code should not be reached!'); } /** * @param User $user * * @return bool */ private function canViewQuote(User $user): bool { if ($user->isAdmin()) { return true; } return in_array(SecurityConfig::QUOTE_SHOW, $user->getRoles(), true); } /** * @param User $user * * @return bool */ private function canCudQuote(User $user): bool { if ($user->isAdmin()) { return true; } return in_array(SecurityConfig::QUOTE_CUD, $user->getRoles(), true); } /** * @param User $user * * @return bool */ private function hasHisQuoteByDefault(User $user): bool { return in_array(SecurityConfig::MY_QUOTE_BY_DEFAULT, $user->getRoles(), true); } /** * @param User $user * @param Quote $quote * * @return bool */ private function canDuplicateQuote(User $user, Quote $quote): bool { return $quote->getCustomerId() === $user->getCustomerId(); }}