src/Security/Voter/PageVoter.php line 12

  1. <?php
  2. namespace App\Security\Voter;
  4. use Symfony\Component\Security\Core\Authorization\Voter\Voter,
  5.     Symfony\Component\Security\Core\Authentication\Token\TokenInterface,
  6.     Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  8. use App\Entity\Page,
  9.     App\Lib\Actions,
  10.     App\Lib\Roles;
  12. final class PageVoter extends Voter
  13. {
  14.     const CREATE_MESSAGE 'Page cannot be created.';
  15.     const EDIT_MESSAGE 'Page cannot be edited.';
  16.     const DELETE_MESSAGE 'Page cannot be deleted.';
  18.     private AuthorizationCheckerInterface $authorizationChecker;
  20.     public function __construct(AuthorizationCheckerInterface $authorizationChecker)
  21.     {
  22.         $this->authorizationChecker $authorizationChecker;
  23.     }
  25.     protected function supports($attribute$subject): bool
  26.     {
  27.         if (! $subject instanceof Page) {
  28.             return false;
  29.         }
  31.         return true;
  32.     }
  34.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  35.     {
  36.         if ($this->authorizationChecker->isGranted(Roles::ROLE_OPENFORM)) {
  37.             return true;
  38.         }
  40.         /** @var Page $page */
  41.         $page $subject;
  43.         return match($attribute) {
  44.             Actions::CREATE => $page->getParent()?->getIsSubPageable() ?? true,
  45.             Actions::EDITActions::CLONE => $page->getIsEditable(),
  46.             Actions::DELETE  => $page->getIsDeletable(),
  47.             default => false,
  48.         };
  49.     }
  50. }