src/Security/Voter/CreateProjectVoter.php line 23

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Common\RoleInterface;
  6. use App\Entity\Common\TypeProjectInterface;
  7. use App\Entity\Project;
  8. use App\Entity\User;
  9. use App\Entity\UserProject;
  10. use App\Entity\UserWorkroom;
  11. use App\Repository\UserProjectRepository;
  12. use Doctrine\ORM\EntityManagerInterface;
  13. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  14. use Symfony\Component\HttpFoundation\RequestStack;
  15. use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBag;
  16. use Symfony\Component\HttpFoundation\Session\Session;
  17. use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
  18. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  19. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  20. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  21. use Symfony\Component\Security\Core\User\UserInterface;
  23. class CreateProjectVoter extends Voter
  24. {
  25.     private int $maxPrivateProjects;
  27.     public const CREATE_PUBLIC_PROJECT 'create_public_project';
  28.     public const CREATE_PRIVATE_PROJECT 'create_private_project';
  30.     protected array $attributes = [
  31.         self::CREATE_PUBLIC_PROJECT,
  32.         self::CREATE_PRIVATE_PROJECT
  33.     ];
  35.     protected AuthorizationCheckerInterface $authChecker;
  37.     public function __construct(
  38.         private UserProjectRepository $userProjectRepository,
  39.         ParameterBagInterface $parameterBag
  40.     ) {
  41.         $this->maxPrivateProjects $parameterBag->get('MAX_PRIVATE_PROJECTS');
  42.     }
  44.     protected function supports($attribute$subject): bool
  45.     {
  46.         if (!\in_array($attribute$this->attributes)) {
  47.             return false;
  48.         }
  50.         return true;
  51.     }
  53.     /**
  54.      * @param mixed $subject
  55.      */
  56.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  57.     {
  58.         $user $token->getUser();
  60.         if (!$user instanceof UserInterface) {
  61.             return false;
  62.         }
  64.         switch ($attribute) {
  65.             case self::CREATE_PUBLIC_PROJECT:
  66.                 return $this->canCreatePublicProject($user);
  67.             case self::CREATE_PRIVATE_PROJECT:
  68.                 return $this->canCreatePrivateProject($user);
  69.             default:
  70.                 return false;
  71.         }
  72.     }
  74.     private function canCreatePublicProject(User $user): bool
  75.     {
  76.         return $user->hasRole(User::ROLE_PROJECT_MANAGER);
  77.     }
  78.     
  79.     private function canCreatePrivateProject(User $user): bool
  80.     {
  81.         return $user->hasRole(User::ROLE_PROJECT_MANAGER)
  82.             || ($user->hasRole(User::ROLE_LEADER_WORKROOM
  83.                 && $this->userProjectRepository->getCountPrivateProjects($user) < $this->maxPrivateProjects);
  84.     }
  85. }