src/Security/Voter/SongWriterVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Composition\SongWriter;
  6. use App\Entity\User\User;
  7. use App\Service\CompositionService;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. use Symfony\Component\Security\Core\User\UserInterface;
  12. class SongWriterVoter extends Voter
  13. {
  14.     private const SONG_WRITER_EDIT 'SONG_WRITER_EDIT';
  16.     /**
  17.      * @var CompositionService
  18.      */
  19.     private $compositionService;
  21.     public function __construct(CompositionService $compositionService)
  22.     {
  23.         $this->compositionService $compositionService;
  24.     }
  26.     protected function supports($attribute$subject)
  27.     {
  28.         return in_array($attribute, [self::SONG_WRITER_EDIT], true)
  29.             && $subject instanceof SongWriter;
  30.     }
  32.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  33.     {
  34.         /** @var User $user */
  35.         $user $token->getUser();
  37.         // if the user is anonymous, do not grant access
  38.         if (!$user instanceof UserInterface) {
  39.             return false;
  40.         }
  42.         switch ($attribute) {
  43.             // If user can edit a composition, it can also edit a songwriter
  44.             case self::SONG_WRITER_EDIT:
  45.                 return $this->compositionService->userCanEditComposition($user$subject->getComposition());
  46.         }
  48.         return false;
  49.     }
  50. }