Chill-project/chill-bundles
6
0
Fork 0
mirror of https://gitlab.com/Chill-Projet/chill-bundles.git synced 2025-06-12 13:24:25 +00:00
Code Issues Actions Projects Releases Wiki Activity

use event to override vote on task

Browse Source 
Now, the bundle dispatch an event `chill_task.vote` to override the authorization
on voting on a task.

If a subscriber or listener emits a vote on the event, this vote override the
logic defined for the default task.
This commit is contained in:
Julien Fastré 2018-07-17 15:28:04 +02:00
parent 95f75e53eb
commit ebc0961fa8
3 changed files with 115 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Resources/config/services/security.yml
View File

@ -4,6 +4,7 @@ services:
arguments:
- "@security.access.decision_manager"
- "@chill.main.security.authorization.helper"
- '@Symfony\Component\EventDispatcher\EventDispatcherInterface'
- "@logger"
tags:
- { name: security.voter }

89
Security/Authorization/AuthorizationEvent.php Normal file
View File

@ -0,0 +1,89 @@
<?php
/*
*
*/
namespace Chill\TaskBundle\Security\Authorization;
use Symfony\Component\EventDispatcher\Event;
use Chill\TaskBundle\Entity\AbstractTask;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
/**
*
*
* @author Julien Fastré <julien.fastre@champs-libres.coop>
*/
class AuthorizationEvent extends Event
{
/**
* @var AbstractTask
*/
protected $task;
/**
*
* @var string
*/
protected $attribute;
/**
*
* @var TokenInterface
*/
protected $token;
/**
*
* @var bool
*/
protected $vote;
const VOTE = 'chill_task.vote';
public function __construct(
AbstractTask $task,
$attribute,
TokenInterface $token
) {
$this->task = $task;
$this->attribute = $attribute;
$this->token = $token;
}
public function getTask(): AbstractTask
{
return $this->task;
}
public function getAttribute()
{
return $this->attribute;
}
public function getToken(): TokenInterface
{
return $this->token;
}
public function getVote()
{
return $this->vote;
}
public function setVote($vote)
{
$this->vote = $vote;
return $this;
}
public function hasVote()
{
return $this->vote !== NULL;
}
public function removeVote()
{
$this->vote = NULL;
}
}

25
Security/Authorization/TaskVoter.php
View File

@ -29,6 +29,8 @@ use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Chill\MainBundle\Entity\User;
use Chill\PersonBundle\Entity\Person;
use Symfony\Component\Security\Core\Role\Role;
use Symfony\Component\EventDispatcher\EventDispatcherInterface;
use Chill\TaskBundle\Security\Authorization\AuthorizationEvent;
/**
*
@ -66,14 +68,22 @@ class TaskVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterf
* @var LoggerInterface
*/
protected $logger;
/**
*
* @var EventDispatcherInterface
*/
protected $eventDispatcher;
public function __construct(
AccessDecisionManagerInterface $accessDecisionManager,
AuthorizationHelper $authorizationHelper,
EventDispatcherInterface $eventDispatcher,
LoggerInterface $logger
) {
$this->accessDecisionManager = $accessDecisionManager;
$this->authorizationHelper = $authorizationHelper;
$this->eventDispatcher = $eventDispatcher;
$this->logger = $logger;
}
@ -101,6 +111,21 @@ class TaskVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterf
if (!$token->getUser() instanceof User) {
return false;
}
$event = new AuthorizationEvent($subject, $attribute, $token);
$this->eventDispatcher->dispatch(AuthorizationEvent::VOTE, $event);
if ($event->hasVote()) {
$this->logger->debug("The TaskVoter is overriding by "
.AuthorizationEvent::VOTE, [
'vote' => $event->getVote(),
'task_id' => $subject->getId()
]);
return $event->getVote();
}
if ($subject instanceof AbstractTask) {
if ($subject->getPerson() === null) {