src/Security/RouteVoter.php line 17

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. namespace App\Security;
  7. use App\Entity\Permission;
  8. use App\Entity\Role;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  11. use Symfony\Component\HttpFoundation\RequestStack;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  14. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  15. use App\Entity\User;
  17. class RouteVoter extends Voter
  18. {
  19.         
  20. //        private $security;
  21.         private mixed $route;
  22.         private AuthorizationCheckerInterface $authorizationChecker;
  23.         private EntityManagerInterface $em;
  24.         
  25.         public function __construct(RequestStack $requestStackAuthorizationCheckerInterface $authorizationCheckerEntityManagerInterface $emParameterBagInterface $parameterBag) {
  27.                 $this->route = ($requestStack->getCurrentRequest()->get('_route') !== null) ? $requestStack->getCurrentRequest()->get('_route') : null;
  28. //                if ($requestStack->getCurrentRequest()->get('_route') !== null)
  29. //                        $this->route = $requestStack->getCurrentRequest()->get('_route');
  30.                 
  31.                 $this->authorizationChecker $authorizationChecker;
  32.                 $this->request $requestStack->getCurrentRequest();
  33.                 $this->em $em;
  34.                 $this->parameterBag $parameterBag;
  35.         }
  36.         
  37.         const ACCESS_ROUTE 'access_route';
  38.         
  39.         protected function supports($attribute$subject)
  40.         {
  42.                 return $attribute === self::ACCESS_ROUTE;
  43.         }
  44.         
  45.         protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  46.         {
  47. //                //isjungiam voteri
  48. //                return true;
  49.                 
  50.                 if(is_null($this->route))
  51.                         return true;
  52.                 
  53. //                dump("voteOnAttribute",$this->route);
  54.                 //listas routu be permissionu?
  55. //                $bypassRoutes = ['security_refresh_api_key', 'translations_for_locale', 'product_list', 'translations_list', 'security_request_reset_password', 'security_password_form', 'security_password_new'];
  56.                 if(in_array($this->route,  $this->parameterBag->get('bypassRoutes')))
  57.                         return true;
  59.                 /** @var User $user */
  60.                 $user $token->getUser();
  62.                 // the user must be logged in; if not, deny access
  63.                 if (!$user instanceof User)
  64.                         return false;
  66.                 //super admin can go anywhere
  67.                 if ($user->superAdmin())
  68.                         return true;
  69.                 
  70.                 if (!empty($this->em->getRepository(Permission::class)->findByUserAndRoute($user$this->route)))
  71.                         return true;
  72.                 
  73.                 return false;
  74.         }
  76. }