src/Security/Voter/AccountVoter.php line 11

  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Account;
  6. use Symfony\Bundle\SecurityBundle\Security;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  9. use Symfony\Component\Uid\Uuid;
  11. class AccountVoter extends Voter
  12. {
  13.     public function __construct(
  14.         private readonly Security $security
  15.     ) {
  16.     }
  18.     protected function supports(string $attributemixed $subject): bool
  19.     {
  20.         return in_array($attribute, ['ACCESS_ACCOUNT_EDIT''ACCESS_ACCOUNT_READ']) && $subject instanceof Account;
  21.     }
  23.     /**
  24.      * @param string $attribute
  25.      * @param Account $subject
  26.      * @param TokenInterface $token
  27.      * @return bool
  28.      */
  29.     protected function voteOnAttribute(string $attributemixed $subjectTokenInterface $token): bool
  30.     {
  31.         if ($this->security->isGranted('ROLE_ADMIN')) {
  32.             return true;
  33.         }
  34.         return $this->security->isGranted(str_replace('ACCESS''ROLE'$attribute)) &&
  35.             $subject->getId()->equals(Uuid::fromString($token->getUser()->account));
  36.     }
  37. }