src/Security/Voter/BlockDatesDeleteVoter.php line 14

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Security\Voter;
  7. use App\Entity\TimeControl\BlockDates;
  8. use App\Entity\User;
  9. use Symfony\Component\Security\Core\{Authentication\Token\TokenInterfaceAuthorization\Voter\VoterSecurity};
  11. /**
  12.  * Does user can delete the BlockDates period?
  13.  */
  14. class BlockDatesDeleteVoter extends Voter
  15. {
  16.     private Security $security;
  18.     public function __construct(Security $security)
  19.     {
  20.         $this->security $security;
  21.     }
  23.     protected function supports(string $attribute$subject): bool
  24.     {
  25.         return $attribute === 'BLOCKDATES_DELETE' && $subject instanceof BlockDates;
  26.     }
  28.     /**
  29.      * @param BlockDates|mixed $subject
  30.      */
  31.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  32.     {
  33.         $user $token->getUser();
  34.         if (!$user instanceof User) {
  35.             return false;
  36.         }
  38.         $manager $subject->getBlockedBy();
  39.         if ($manager) {
  40.             $blockedBy $manager->getUser();
  41.         } else {
  42.             $blockedBy null;
  43.         }
  45.         if ($user === $blockedBy) {
  46.             return $this->security->isGranted('ROLE_MANAGER');
  47.         } else {
  48.             return $this->security->isGranted('ROLE_ADMIN');
  49.         }
  50.     }
  51. }