src/Security/Voter/MediaVoter.php line 10

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  6. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  7. use Symfony\Component\Security\Core\User\UserInterface;
  8. use App\Entity\User;
  10. class MediaVoter extends Voter
  11. {
  12. protected function supports(string $attribute, $subject): bool
  13. {
  14. // replace with your own logic
  15. // https://symfony.com/doc/current/security/voters.html
  16. return in_array($attribute, ['POST_EDIT', 'POST_VIEW'])
  17. && $subject instanceof \App\Entity\Media;
  18. }
  20. protected function voteOnAttribute(string $attribute, $media, TokenInterface $token): bool
  21. {
  23. $user = $token->getUser();
  24. // if the user is anonymous, do not grant access
  25. if($user->getIsActive()===0)
  26. return false;
  27. if (!$user instanceof UserInterface) {
  28. return false;
  29. }
  30. if($media->getMediaCategorie()->getType() == "candidature" && $media->getMediaCategorie()->getName() == "photo" && count($media->getContact()->getSejourSessionEquipiers())>0 )
  31. return true;
  32. if(in_array(User::ROLE_ADMIN,$user->getRoles()))
  33. return true;
  34. if(in_array('ROLE_DIRECTEUR',$user->getRoles())&&$media->getMediaCategorie()->getType()=="candidature")
  35. return true;
  36. if(in_array('ROLE_DIRECTEUR',$user->getRoles())&&$media->getMediaCategorie()->getType()=="App\Entity\Sejour")
  37. return true;
  38. if($media->getContact() !== null && $media->getContact()==$user->getContact())
  39. return true;
  40. if($media->getContact() !== null && $media->getContact()->getParent() == $user->getContact())
  41. return true;
  42. if($user->getContact() !== null && $media->getMediaCategorie()->getName() == "projet pedagogique")
  43. return true;
  44. if($media->getSejourSession()!== null && $media->getSejourSession()->getDirector()==$user->getContact())
  45. return true;
  46. if($media->getInscription() !== null && $media->getInscription()->getParent() == $user->getContact())
  47. return true;
  48. //todo voir si sur sessions
  50. if(in_array('ROLE_DIRECTEUR',$user->getRoles())){
  51. return $media->getMediaCategorie()->getIsEspaceDirecteur();
  52. if($media->getContact() !== null)
  53. {
  54. //mettre plus de sécurite
  55. return $media->getMediaCategorie()->getIsEspaceDirecteur();
  57. }
  58. }
  61. return false;
  64. }
  65. }