src/AdminBundle/Security/TicketVoter.php line 10

Open in your IDE?
  1. <?php
  3. namespace AdminBundle\Security;
  5. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  6. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  7. use AdminBundle\Entity\Ticket;
  8. use AdminBundle\Entity\User;
  10. class TicketVoter extends Voter
  11. {
  12. private const EDIT = 'edit';
  13. private const DELETE = 'delete';
  15. /**
  16. * {@inheritdoc}
  17. */
  18. protected function supports($attribute, $subject): bool {
  19. $allowedAttributes = [
  20. self::EDIT,
  21. self::DELETE,
  22. ];
  24. if (!in_array(strtolower($attribute), $allowedAttributes)) {
  25. return false;
  26. }
  28. if (!$subject instanceof Ticket) {
  29. return false;
  30. }
  32. return true;
  33. }
  35. /**
  36. * {@inheritdoc}
  37. */
  38. protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool {
  39. $user = $token->getUser();
  41. if (!$user instanceof User) {
  42. return false;
  43. }
  45. $allowedRoles = [
  46. User::ROLE_ADMIN,
  47. User::ROLE_OPERATOR,
  48. ];
  50. return !empty(array_intersect($allowedRoles, $user->getRoles()));
  51. }
  52. }