src/Security/Voter/LoginMessageVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Util\AccountTools;
  6. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  7. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  8. use Symfony\Component\Security\Core\User\UserInterface;
  9. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  10. use Symfony\Component\Security\Core\Security;
  12. class LoginMessageVoter extends Voter
  13. {
  14.     private $security;
  15.     
  16.     public function __construct(Security $security)
  17.     {
  18.         $this->security $security;
  19.     }
  20.     
  21.     protected function supports($attribute$subject) : bool
  22.     {
  23.         // NEW actions don't yet have objects
  24.         if(in_array($attribute, ['LOGIN_MESSAGES'])) {
  25.             return true;
  26.         }
  27.         
  28.         if(in_array($attribute, ['NEW_LOGIN_MESSAGE'])) {
  29.             return true;
  30.         }
  31.             
  32.         return in_array($attribute, ['EDIT''DELETE'])
  33.             && $subject instanceof \App\Model\LoginMessage;
  34.     }
  35.     
  36.     protected function voteOnAttribute($attribute$subjectTokenInterface $token) : bool
  37.     {
  38.         $user $token->getUser();
  39.         // if the user is anonymous, do not grant access
  40.         if (!$user instanceof UserInterface) {
  41.             return false;
  42.         }
  43.         
  44.         if(!isset($_SERVER['APP_QP_LOGIN_MSG_ALLOWED'])) {
  45.             return false;
  46.         }
  47.         
  48.         if(isset($_SERVER['APP_QP_LOGIN_MSG_ALLOWED'])) {
  49.             if($_SERVER['APP_QP_LOGIN_MSG_ALLOWED'] == 'false') {
  50.                 return false;
  51.             }
  52.         }
  53.         
  54.         switch ($attribute) {
  55.             case 'EDIT':
  56.                 if($this->security->isGranted('ROLE_POSTMASTER')) {
  57.                     return true;
  58.                 }
  59.                 break;
  60.                 
  61.             case 'DELETE':
  62.                 if($this->security->isGranted('ROLE_POSTMASTER')) {
  63.                     return true;
  64.                 }
  65.                 break;
  66.                 
  67.             case 'NEW_LOGIN_MESSAGE':
  68.                 if($this->security->isGranted('ROLE_POSTMASTER')) {
  69.                     return true;
  70.                 }
  71.                 break;
  72.                     
  73.             case 'LOGIN_MESSAGES':
  74.                 if($this->security->isGranted('ROLE_POSTMASTER')) {
  75.                     return true;
  76.                 }
  77.                 break;                
  78.         }
  79.         
  80.         return false;
  81.     }
  82. }