<?phpnamespace App\Security\Voter\User;use App\Entity\Member;use App\Security\ApiUser;use App\Service\Messenger\MessengerPropertyService;use App\Service\Property\MemberPropertyService;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;class OperatorVoter extends Voter{ public const READ = 'operator_read'; public const GUESTBOOK = 'operator_guestbook'; public const STATS = 'operator_stats'; protected MemberPropertyService $propertyService; public function __construct(MemberPropertyService $propertyService) { $this->propertyService = $propertyService; } protected function supports(string $attribute, $subject): bool { if (!$subject instanceof Member) { return false; } return in_array($attribute, [ self::READ, self::GUESTBOOK, self::STATS, ], true); } protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool { $user = $token->getUser(); if (!$user instanceof ApiUser || !$user->getIsOperator()) { return false; } /* * @var $subject Member */ switch ($attribute) { case self::STATS: $prop = MessengerPropertyService::PROPERTY_MESSENGER_OPERATOR_AMATEUR_STATS_ENABLED; if (!(bool) $this->propertyService->getValueForMember($user->getMember(), $prop)) { return false; } // no break case self::GUESTBOOK: $prop = MessengerPropertyService::PROPERTY_MESSENGER_OPERATOR_AMATEUR_GUESTBOOK_ENABLED; if (!(bool) $this->propertyService->getValueForMember($user->getMember(), $prop)) { return false; } } return $user->getMember()->getId() === $subject->getId(); }}