src/Security/Voter/Messenger/ConversationRouteVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter\Messenger;
  5. use App\Entity\ConversationRoute;
  6. use App\Security\ApiUser;
  7. use App\Service\User\MemberOperatorService;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  11. class ConversationRouteVoter extends Voter
  12. {
  13.     public const PERMISSION_READ 'read';
  14.     public const PERMISSION_HIDE 'hide';
  16.     protected function supports(string $attribute$subject): bool
  17.     {
  18.         if (!$subject instanceof ConversationRoute) {
  19.             return false;
  20.         }
  22.         return in_array($attribute, [
  23.             self::PERMISSION_READ,
  24.             self::PERMISSION_HIDE,
  25.         ], true);
  26.     }
  28.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  29.     {
  30.         $user $token->getUser();
  31.         if (!$user instanceof ApiUser) {
  32.             return false;
  33.         }
  35.         /**
  36.          * @var $subject ConversationRoute
  37.          */
  38.         if ($user->getIsOperator() && MemberOperatorService::isMemberOperatedByUser($subject->getToMember(), $user)) {
  39.             return true;
  40.         }
  42.         return $subject->getToMember()->getId() === $user->getMember()->getId();
  43.     }
  44. }