Symfony Profiler

<?php
namespace App\Security\Voter;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
use Symfony\Component\Security\Core\User\UserInterface;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
use Symfony\Component\Security\Core\Security;
class SpamAssassinVoter extends Voter
{
private $security;
public function __construct(Security $security)
{
$this->security = $security;
}
protected function supports($attribute, $subject) : bool
{
return in_array($attribute, ['SPAMASSASSIN'])
&& $subject instanceof \App\Model\UserPref;
}
protected function voteOnAttribute($attribute, $subject, TokenInterface $token) : bool
{
$user = $token->getUser();
// if the user is anonymous, do not grant access
if (!$user instanceof UserInterface) {
return false;
}
switch ($attribute) {
case 'SPAMASSASSIN':
if($this->security->isGranted('ROLE_POSTMASTER_MANY')) {
if(preg_match('/^:/', $subject->getUsername())) {
$subjUserDomainArr = explode('@', $subject->getUsername());
if(sizeof($subjUserDomainArr) != 2) {
return false;
}
foreach($user->getDomains() as $d) {
if($subjUserDomainArr[1] == $d) {
return true;
}
}
}
elseif($subject->getUsername() == $user->getUsername()) {
return true;
}
}
elseif($this->security->isGranted('ROLE_POSTMASTER')) {
if(preg_match('/^:/', $subject->getUsername())) {
$subjUserDomainArr = explode('@', $subject->getUsername());
$userDomainArr = explode('@', $user->getUsername());
if(sizeof($subjUserDomainArr) != 2 || sizeof($userDomainArr) != 2) {
return false;
}
if($userDomainArr[1] == $subjUserDomainArr[1]) {
return true;
}
}
elseif($subject->getUsername() == $user->getUsername()) {
return true;
}
}
elseif($this->security->isGranted('ROLE_USER')) {
// only possible to edit his own account
if($subject->getUsername() == $user->getUsername()) {
return true;
}
}
break;
}
return false;
}
}

src/Security/Voter/SpamAssassinVoter.php line 11