src/Security/Voter/User/AddressVoter.php line 10

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter\User;
  5. use App\Entity\Address;
  6. use App\Security\ApiUser;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. class AddressVoter extends Voter
  11. {
  12.     public const PERMISSION_READ 'read';
  13.     public const PERMISSION_EDIT 'edit';
  15.     protected function supports(string $attribute$subject): bool
  16.     {
  17.         if (!$subject instanceof Address) {
  18.             return false;
  19.         }
  21.         return in_array($attribute, [self::PERMISSION_READself::PERMISSION_EDIT], true);
  22.     }
  24.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  25.     {
  26.         $user $token->getUser();
  28.         if (!$user instanceof ApiUser) {
  29.             return false;
  30.         }
  31.         // admin should be able to do anything
  32.         if ($user->getIsAdmin()) {
  33.             return true;
  34.         }
  36.         /*
  37.          * @var $subject Address
  38.          */
  39.         return $user->getMember()->getId() == $subject->getAccount()->getMember()->getId();
  40.     }
  41. }