src/Security/CampaignVoter.php line 26

Open in your IDE?
  1. <?php
  3. /**
  4.  * Created by IntelliJ IDEA.
  5.  * User: jochen
  6.  * Date: 12.09.16
  7.  * Time: 15:14
  8.  */
  9. namespace App\Security;
  10. // use Monolog\Logger;
  11. use App\Entity\User;
  12. use App\Entity\Document;
  13. use App\Entity\Project;
  15. use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTTokenManagerInterface;
  16. use Symfony\Component\Form\Exception\RuntimeException;
  17. use Symfony\Component\HttpFoundation\RequestStack;
  18. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  19. use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
  20. use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  21. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  22. use Symfony\Component\Security\Core\User\UserInterface;
  23. use Psr\Log\LoggerInterface;
  24. use Psr\Log\LoggerAwareInterface;
  26. class CampaignVoter implements VoterInterfaceLoggerAwareInterface
  27. {
  28.     const ACCESS   'access';
  30.     private $decisionManager;
  32.     /**
  33.      * @var LoggerInterface $logger
  34.      */
  36.     private $logger;
  38.     protected $jwtManager;
  39.     protected $tokenStorageInterface;
  41.     /**
  42.      * @var RequestStack $requestStack
  43.      */
  44.     protected $requestStack;
  46.     private $user;
  48.     public function __construct(
  49.         AccessDecisionManagerInterface $decisionManager,
  50.         TokenStorageInterface $tokenStorageInterface,
  51.         JWTTokenManagerInterface $jwtManager,
  52.         RequestStack $requestStack)
  53.     {
  54.         $this->decisionManager $decisionManager;
  55.         $this->jwtManager $jwtManager;
  56.         $this->tokenStorageInterface $tokenStorageInterface;
  57.         $this->requestStack $requestStack;
  58.     }
  60.     public function setLogger(LoggerInterface $logger)
  61.     {
  62.         $this->logger $logger;
  63.     }
  65.     public function supportsAttribute($attribute)
  66.     {
  68.         return in_array($attribute, array(
  69.             self::ACCESS,
  70.         ));
  71.     }
  73.     public function supportsClass($object)
  74.     {
  75.         $this->logger->info(sprintf("CampaignVoter class supported"));
  76.         $supportedClasses = array(
  77.             'App\Entity\Campaign',
  78.         );
  79.         foreach($supportedClasses as $supportedClass) {
  80.             if ($object instanceof $supportedClass) {
  81.                 return true;
  82.             }
  83.         }
  84.         return false;
  85.     }
  87.     public function vote(TokenInterface $token$object, array $attributes)
  88.     {
  89.         $decodedJwtToken $this->jwtManager->decode($this->tokenStorageInterface->getToken());
  90.         $handleFromToken $decodedJwtToken["campaign"];
  91.         $handleFromRequest $this->requestStack->getCurrentRequest()->get('campaignHandle');
  93.         if ($handleFromToken !== $handleFromRequest) {
  94.             $this->logger->info(sprintf("CampaignVoter handle mismatch between request %s and toke  %s"$handleFromToken$handleFromRequest));
  95.             return VoterInterface::ACCESS_DENIED;
  96.         }
  98.         if (is_null($object)) {
  99.             return VoterInterface::ACCESS_ABSTAIN;
  100.         }
  102.         $attr $attributes[0];
  104.         if (!$this->supportsClass($object) || !$this->supportsAttribute($attr)) {
  105.             return VoterInterface::ACCESS_ABSTAIN;
  106.         }
  108.         if ($object->getActive()) {
  109.             return VoterInterface::ACCESS_GRANTED;
  110.         }
  111.         else {
  112.             return VoterInterface::ACCESS_ABSTAIN;
  113.         }
  117.     }
  119. }