src/Security/Voter/SongVoter.php line 17

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Profile\Profile;
  6. use App\Entity\Song\Song;
  7. use App\Entity\User\User;
  8. use App\Repository\Profile\ProfileRepository;
  9. use App\Service\AuthenticationService;
  10. use App\Service\ProfileService;
  11. use App\Service\SongService;
  12. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  15. use Symfony\Component\Security\Core\User\UserInterface;
  17. class SongVoter extends Voter
  18. {
  19.     private const SONG_ACCESS 'SONG_ACCESS';
  20.     private const SONG_EDIT 'SONG_EDIT';
  22.     /**
  23.      * @var SongService
  24.      */
  25.     private $songService;
  27.     /** @var ProfileService */
  28.     private $profileService;
  30.     /** @var AuthenticationService */
  31.     private $authenticationService;
  33.     /** @var ProfileRepository */
  34.     private $profileRepository;
  36.     public function __construct(
  37.         SongService $songService,
  38.         ProfileService $profileService,
  39.         AuthenticationService $authenticationService,
  40.         ProfileRepository $profileRepository
  41.     )
  42.     {
  43.         $this->songService $songService;
  44.         $this->profileService $profileService;
  45.         $this->authenticationService $authenticationService;
  46.         $this->profileRepository $profileRepository;
  47.     }
  49.     protected function supports($attribute$subject)
  50.     {
  51.         return in_array($attribute, [self::SONG_ACCESSself::SONG_EDIT], true)
  52.             && $subject instanceof Song;
  53.     }
  55.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  56.     {
  57.         /** @var User $user */
  58.         $user $token->getUser();
  60.         if($_ENV['CWR_ENVIROMENT'] !== 'local'){
  61.             /** @var Profile $profile */
  62.             $profile $this->profileService->findLastAccessedProfileForUser($this->authenticationService->getUser());
  63.         }else{
  64.             /** @var Profile $profile */
  65.             $profile $this->profileRepository->findOneBy(['urlName' => $_ENV['LOCAL_PUBLISHER_ADMINISTRATOR_PROFILE_URL']]);
  66.         }
  68.         // if the user is anonymous, do not grant access
  69.         if (!$user instanceof UserInterface) {
  70.             return false;
  71.         }
  73.         /*if($this->authenticationService->userIsMmpzServiceAdmin($user)){
  74.             return true;
  75.         }*/
  77.         switch ($attribute) {
  78.             case self::SONG_ACCESS:
  79.                 $profileHasInactiveSubscription $this->profileService->profielHasInactivePacakgeSubcription($profile);
  80.                 if($profileHasInactiveSubscription){
  81.                     throw new BadRequestHttpException("The status of your subscription is currently Inactive. This means we have not yet received payment and you will not be able to upload any songs. Please contact publishing@horusmusic.global to discuss this and request an invoice to make a direct payment.");
  82.                 }
  84.                 $hasActivePackage $this->profileService->profielHasActivePacakgeSubcription($profile);
  85.                 if(!$hasActivePackage){
  86.                     throw new BadRequestHttpException("This profile doesn't have a package or subscription active");
  87.                 }
  89.                 $canAccess $this->songService->userCanAccessSong($user$subject);
  90.                 return ($canAccess && $hasActivePackage && !$profileHasInactiveSubscription);
  91.             case self::SONG_EDIT:
  92.                 $profileHasInactiveSubscription $this->profileService->profielHasInactivePacakgeSubcription($profile);
  93.                 if($profileHasInactiveSubscription){
  94.                     throw new BadRequestHttpException("The status of your subscription is currently Inactive. This means we have not yet received payment and you will not be able to upload any songs. Please contact publishing@horusmusic.global to discuss this and request an invoice to make a direct payment.");
  95.                 }
  97.                 $hasActivePackage $this->profileService->profielHasActivePacakgeSubcription($profile);
  98.                 if(!$hasActivePackage){
  99.                     throw new BadRequestHttpException("This profile doesn't have a package or subscription active");
  100.                 }
  102.                 $canEdit $this->songService->userCanEditSong($user$subject);
  103.                 return ($canEdit && $hasActivePackage && !$profileHasInactiveSubscription);
  104.         }
  106.         return false;
  107.     }
  108. }