src/Security/Voter/InscriptionVoter.php line 10

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\User;
  6. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  7. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  8. use Symfony\Component\Security\Core\User\UserInterface;
  10. class InscriptionVoter extends Voter
  11. {
  12. protected function supports(string $attribute, $subject): bool
  13. {
  14. // replace with your own logic
  15. // https://symfony.com/doc/current/security/voters.html
  16. return in_array($attribute, ['POST_EDIT', 'POST_VIEW'])
  17. && $subject instanceof \App\Entity\Inscription;
  18. }
  20. protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool
  21. {
  22. $user = $token->getUser();
  23. // if the user is anonymous, do not grant access
  24. if (!$user instanceof UserInterface) {
  25. return false;
  26. }
  27. if(in_array(User::ROLE_ADMIN,$user->getRoles()))
  28. return true;
  29. if ($user->getContact() === $subject->getParent())
  30. return true;
  31. if ($subject->getEnterpriseOptionSejourSession() !== null && $subject->getEnterpriseOptionSejourSession()->getEnterprise() !==null && $subject->getEnterpriseOptionSejourSession()->getEnterprise()->getContact() === $user->getContact() )
  32. return true;
  33. return false;
  35. }
  36. }