src/System/Voter/User/UserRightVoter.php line 13

Open in your IDE?
  1. <?php
  3. namespace App\System\Voter\User;
  5. use App\Entities\Rights\Right;
  6. use App\Entities\Rights\Rights;
  7. use App\Entities\User\UserAccess;
  8. use App\Entities\User\UserInterface;
  9. use App\UseCase\User\Read\Access\Integration\IsMainSystemIntegrationHandler;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  13. class UserRightVoter extends Voter
  14. {
  15.     public function __construct(
  16.         private readonly IsMainSystemIntegrationHandler $isMainSystemIntegrationHandler,
  17.     ) {
  18.     }
  20.     protected function supports(string $attributemixed $subject): bool
  21.     {
  22.         return in_array(
  23.             $attribute,
  24.             [
  25.                 Rights::ServicesView->value,
  26.                 Rights::ServicesViewZpModel->value,
  27.                 Rights::ServicesEdit->value,
  29.                 Rights::FinAdminView->value,
  30.                 Rights::FinAdminViewZpModel->value,
  31.                 Rights::FinAdminEditPercent->value,
  32.                 Rights::FinAdminEditFine->value,
  33.                 Rights::FinAdminEditBonus->value,
  35.                 Rights::PayoutView->value,
  36.                 Rights::PayoutEdit->value,
  38.                 Rights::MopView->value,
  39.                 Rights::MopViewModelFio->value,
  40.                 Rights::MopViewOperatorFio->value,
  41.                 Rights::MopNotViewModelAndOperatorFio->value,
  43.                 Rights::OperatorView->value,
  44.                 Rights::OperatorViewZpOperator->value,
  45.                 Rights::OperatorEditBonus->value,
  46.                 Rights::OperatorEditFine->value,
  47.                 Rights::OperatorEditTotal->value,
  48.                 Rights::OperatorEditPercent->value,
  49.                 Rights::OperatorViewModelFio->value,
  51.                 Rights::MainSystemIntegration->value,
  52.             ],
  53.             true
  54.         );
  55.     }
  57.     protected function voteOnAttribute(string $attributemixed $subjectTokenInterface $token): bool
  58.     {
  59.         $user $token->getUser();
  61.         if (!$user instanceof UserInterface) {
  62.             return false;
  63.         }
  65.         if ($user->isAdmin()) {
  66.             return true;
  67.         }
  69.         if ($this->isMainSystemIntegrationHandler->__invoke($user) && $attribute === Rights::MainSystemIntegration->value) {
  70.             return true;
  71.         }
  73.         /** @var UserAccess $user */
  74.         if (!$rights $user->getRights()) {
  75.             return false;
  76.         }
  78.         $rights $rights->toArray();
  80.         return match ($attribute) {
  82.             Rights::MopView->value =>
  83.                 $this->checkRight($rightsRights::MopViewModelFio->value)
  84.                 || $this->checkRight($rightsRights::MopViewOperatorFio->value)
  85.                 || $this->checkRight($rightsRights::MopNotViewModelAndOperatorFio->value),
  87.             Rights::MopViewModelFio->value =>
  88.                 $this->checkRight($rightsRights::MopViewModelFio->value)
  89.                 && !$this->checkRight($rightsRights::MopNotViewModelAndOperatorFio->value),
  91.             Rights::MopViewOperatorFio->value =>
  92.                 $this->checkRight($rightsRights::MopViewOperatorFio->value)
  93.                 && !$this->checkRight($rightsRights::MopNotViewModelAndOperatorFio->value),
  95.             default => $this->checkRight($rights$attribute),
  96.         };
  97.     }
  99.     /**
  100.      * @param array<Right> $rights
  101.      * @param string             $rightCode
  102.      *
  103.      * @return bool
  104.      */
  105.     private function checkRight(array $rightsstring $rightCode): bool
  106.     {
  107.         return !empty(array_filter($rights, fn(Right $right) => $right->getCode() === $rightCode));
  108.     }
  109. }