src/Package/Admin/Tools/SecurityVoter/SecurityVoter.php line 21

Open in your IDE?
  1. <?php
  2. namespace App\Package\Admin\Tools\SecurityVoter;
  4. use Symfony\Component\HttpFoundation\RequestStack,
  5.     Symfony\Component\Security\Core\Authorization\Voter\VoterInterface,
  6.     Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use App\Package\Toolkit\ApplicationMode\ApplicationMode,
  9.     App\Package\Admin\Tools\AdminState\AdminState,
  10.     App\Package\Admin\Main\EntityInterface\AdminInterface;
  12. /**
  13.  * SecurityVoter
  14.  * 
  15.  * Security voter for administration panel
  16.  * 
  17.  * @author     Daniel Balowski <d.balowski@openform.pl> (_creator)
  18.  * @copyright  Openform
  19.  * @since      03.2019
  20.  */
  21. class SecurityVoter implements VoterInterface
  22. {
  23.     /**
  24.      * @var ApplicationMode
  25.      */
  26.     protected $applicationMode;
  28.     /**
  29.      * @var AdminState
  30.      */
  31.     protected $adminState;
  33.     /**
  34.      * @var RequestStack
  35.      */
  36.     protected $requestStack;
  39.     /**
  40.      * @param ApplicationMode  $applicationMode
  41.      * @param AdminState       $adminState
  42.      * @param RequestStack     $requestStack
  43.      */
  44.     public function __construct(ApplicationMode $applicationModeAdminState $adminStateRequestStack $requestStack
  45.     {
  46.         $this->applicationMode $applicationMode;
  47.         $this->adminState      $adminState;
  48.         $this->requestStack    $requestStack;
  49.     }
  52.     /**
  53.      * {@inheritDoc}
  54.      */
  55.     public function vote(TokenInterface $token$subject null, array $attributes = []) : int
  56.     {
  57.         if (
  58.             $this->applicationMode->getCurrentMode() !== 'admin' ||
  59.             $this->requestStack->getParentRequest()
  60.         ) {
  61.             return VoterInterface::ACCESS_GRANTED;
  62.         }
  64.         $admin $this->getAdmin($token);
  66.         if (! $admin) {
  67.             return VoterInterface::ACCESS_GRANTED;
  68.         }
  70.         $module $this->adminState->getCurrentModule();
  72.         return
  73.             ! $module || $admin->verifyAdminModuleAccess($module) ?
  74.             VoterInterface::ACCESS_GRANTED :
  75.             VoterInterface::ACCESS_DENIED;
  76.     }
  78.     /**
  79.      * Gets admin
  80.      * 
  81.      * @param TokenInterface|null  $token    (optional)
  82.      * 
  83.      * @return AdminInterface|null
  84.      */
  85.     protected function getAdmin(TokenInterface $token null) : ? AdminInterface
  86.     {
  87.         if (! $token) {
  88.             return null;
  89.         }
  91.         $admin $token->getUser();
  93.         return 
  94.             $admin && gettype($admin) !== 'string' ?
  95.             $admin :
  96.             null;
  97.     }
  98. }