Chill-project/chill-bundles
6
0
Fork 0
mirror of https://gitlab.com/Chill-Projet/chill-bundles.git synced 2025-08-20 22:53:49 +00:00
Code Issues Actions Projects Releases Wiki Activity

105 worflow

Browse Source
This commit is contained in:
Mathieu Jaumotte
2022-01-24 13:17:46 +00:00
committed by Julien Fastré
parent daff4e4200
commit c7dbaae8d6
110 changed files with 5176 additions and 392 deletions
Download Patch File Download Diff File Expand all files Collapse all files

70
src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php Normal file
View File

@@ -0,0 +1,70 @@
<?php
/**
* Chill is a software for social workers
*
* For the full copyright and license information, please view
* the LICENSE file that was distributed with this source code.
*/
declare(strict_types=1);
namespace Chill\MainBundle\Security\Authorization;
use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
use Chill\MainBundle\Workflow\EntityWorkflowManager;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
use Symfony\Component\Security\Core\Security;
use UnexpectedValueException;
use function in_array;
class EntityWorkflowVoter extends Voter
{
public const CREATE = 'CHILL_MAIN_WORKFLOW_CREATE';
public const SEE = 'CHILL_MAIN_WORKFLOW_SEE';
private EntityWorkflowManager $manager;
private Security $security;
public function __construct(EntityWorkflowManager $manager, Security $security)
{
$this->manager = $manager;
$this->security = $security;
}
protected function supports($attribute, $subject)
{
return $subject instanceof EntityWorkflow && in_array($attribute, self::getRoles(), true);
}
protected function voteOnAttribute($attribute, $subject, TokenInterface $token)
{
switch ($attribute) {
case self::CREATE:
case self::SEE:
$handler = $this->manager->getHandler($subject);
$entityAttribute = $handler->getRoleShow($subject);
if (null === $entityAttribute) {
return true;
}
return $this->security->isGranted($entityAttribute, $handler->getRelatedEntity($subject));
default:
throw new UnexpectedValueException("attribute {$attribute} not supported");
}
}
private static function getRoles(): array
{
return [
self::SEE,
self::CREATE,
];
}
}