apply new role on accompanying period

src/Bundle/ChillMainBundle/Security/Authorization/AuthorizationHelper.php

@@ -269,16 +269,12 @@ class AuthorizationHelper
 
     /**
      *
-     * @param Role $role
-     * @param Center $center
-     * @param Scope $circle
-     * @return Users
+     * @return User[]
      */
-    public function findUsersReaching(Role $role, Center $center, Scope $circle = null)
+    public function findUsersReaching(string $role, Center $center, Scope $circle = null): array
     {
         $parents = $this->getParentRoles($role);
         $parents[] = $role;
-        $parentRolesString = \array_map(function(Role $r) { return $r->getRole(); }, $parents);
 
         $qb = $this->em->createQueryBuilder();
         $qb
@@ -288,7 +284,7 @@ class AuthorizationHelper
             ->join('gc.permissionsGroup', 'pg')
             ->join('pg.roleScopes', 'rs')
             ->where('gc.center = :center')
-            ->andWhere($qb->expr()->in('rs.role', $parentRolesString))
+            ->andWhere($qb->expr()->in('rs.role', $parents))
             ;
 
         $qb->setParameter('center', $center);
@@ -322,21 +318,16 @@ class AuthorizationHelper
      * which are registered into Chill are taken into account.
      *
      * @param Role $role
-     * @return Role[] the role which give access to the given $role
+     * @return string[] the role which give access to the given $role
      */
-    public function getParentRoles(Role $role)
+    public function getParentRoles($role): array
     {
         $parentRoles = [];
         // transform the roles from role hierarchy from string to Role
-        $roles = \array_map(
-                function($string) {
-                    return new Role($string);
-                },
-                \array_keys($this->hierarchy)
-                );
+        $roles = \array_keys($this->hierarchy);
 
         foreach ($roles as $r) {
-            $childRoles = $this->roleHierarchy->getReachableRoleNames([$r->getRole()]);
+            $childRoles = $this->roleHierarchy->getReachableRoleNames([$r]);
 
             if (\in_array($role, $childRoles)) {
                 $parentRoles[] = $r;

src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelper.php

@@ -5,7 +5,7 @@ namespace Chill\MainBundle\Security\Authorization;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Security\Resolver\CenterResolverDispatcher;
 
-class DefaultVoterHelper implements VoterHelperInterface
+final class DefaultVoterHelper implements VoterHelperInterface
 {
     protected AuthorizationHelper $authorizationHelper;
 

src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelperGenerator.php

@@ -18,7 +18,7 @@ final class DefaultVoterHelperGenerator implements VoterGeneratorInterface
         $this->centerResolverDispatcher = $centerResolverDispatcher;
     }
 
-    public function addCheckFor($subject, $attributes): self
+    public function addCheckFor(?string $subject, array $attributes): self
     {
        $this->configuration[] = [$attributes, $subject];
 

src/Bundle/ChillMainBundle/Security/Authorization/VoterGeneratorInterface.php

@@ -9,7 +9,7 @@ interface VoterGeneratorInterface
      * @param array $attributes an array of attributes
      * @return $this
      */
-    public function addCheckFor(string $class, array $attributes): self;
+    public function addCheckFor(?string $class, array $attributes): self;
 
     public function build(): VoterHelperInterface;
 }