src/FMT/Application/Voter/AdminPanelVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace FMT\Application\Voter;
  5. use EasyCorp\Bundle\EasyAdminBundle\Dto\MenuItemDto;
  6. use EasyCorp\Bundle\EasyAdminBundle\Security\Permission;
  7. use FMT\Data\Entity\User;
  8. use FMT\Data\Enums\AdminPanelPermissions;
  9. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  10. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  12. class AdminPanelVoter extends Voter
  13. {
  14.     /**
  15.      * @param $permissionName
  16.      * @param $subject
  17.      * @return bool
  18.      */
  19.     protected function supports($permissionName$subject): bool
  20.     {
  21.         return Permission::exists($permissionName);
  22.     }
  24.     /**
  25.      * @param $permissionName
  26.      * @param $subject
  27.      * @param TokenInterface $token
  28.      * @return bool
  29.      */
  30.     protected function voteOnAttribute($permissionName$subjectTokenInterface $token): bool
  31.     {
  32.         if (Permission::EA_VIEW_MENU_ITEM === $permissionName) {
  33.             return $this->voteOnViewMenuItemPermission($subject$token);
  34.         }
  36.         return false;
  37.     }
  39.     /**
  40.      * @param MenuItemDto $menuItemDto
  41.      * @param TokenInterface $token
  42.      * @return bool
  43.      */
  44.     private function voteOnViewMenuItemPermission(MenuItemDto $menuItemDtoTokenInterface $token): bool
  45.     {
  46.         /** @var User $user */
  47.         $user $token->getUser();
  49.         if ($menuItemDto->getPermission() === AdminPanelPermissions::REPORT_VIEWER) {
  50.             return $user->hasRole(User::ROLE_MANAGER) || $user->hasRole(User::ROLE_SUPER_ADMIN);
  51.         }
  53.         if ($menuItemDto->getPermission() === AdminPanelPermissions::USER_SCHOOL_VIEWER) {
  54.             return $user->hasRole(User::ROLE_MANAGER) || $user->hasRole(User::ROLE_SUPER_ADMIN);
  55.         }
  57.         if ($menuItemDto->getPermission() === AdminPanelPermissions::EXTERNAL_USER_VIEWER) {
  58.             return $user->hasRole(User::ROLE_MANAGER) || $user->hasRole(User::ROLE_SUPER_ADMIN) || $user->hasRole(User::ROLE_SCHOOL_ADMIN);
  59.         }
  61.         if ($menuItemDto->getPermission() === AdminPanelPermissions::DONOR_USER_VIEWER) {
  62.             return $user->hasRole(User::ROLE_MANAGER) || $user->hasRole(User::ROLE_SUPER_ADMIN);
  63.         }
  65.         if ($menuItemDto->getPermission() === AdminPanelPermissions::STUDENT_USER_VIEWER) {
  66.             return $user->hasRole(User::ROLE_MANAGER) || $user->hasRole(User::ROLE_SUPER_ADMIN) || $user->hasRole(User::ROLE_SCHOOL_ADMIN);
  67.         }
  69.         return false;
  70.     }
  71. }