Part-DB.Part-DB-server/src/Security/Voter/PartVoter.php

<?php

namespace App\Security\Voter;

use App\Entity\Parts\Part;
use App\Entity\UserSystem\User;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;

/**
 * A Voter that votes on Part entities.
 *
 * See parts permissions for valid operations.
 */
class PartVoter extends ExtendedVoter
{
    public const READ = 'read';

    protected function supports($attribute, $subject)
    {
        // replace with your own logic
        // https://symfony.com/doc/current/security/voters.html
        //return ($subject instanceof Part || in_array($subject, ['PERM_parts', 'PERM_parts_name']));

        if ($subject instanceof Part) {
            //Check if a sub permission should be checked -> $attribute has format name.edit
            if (false !== strpos($attribute, '.')) {
                [$perm, $op] = explode('.', $attribute);

                return in_array($op, $this->resolver->listOperationsForPermission('parts_'.$perm), false);
            }

            return in_array($attribute, $this->resolver->listOperationsForPermission('parts'), false);
        }

        return false;
    }

    protected function voteOnUser($attribute, $subject, User $user): bool
    {
        if ($subject instanceof Part) {
            //Check for sub permissions
            if (false !== strpos($attribute, '.')) {
                [$perm, $op] = explode('.', $attribute);

                return $this->resolver->inherit($user, 'parts_'.$perm, $op) ?? false;
            }

            //Null concealing operator means, that no
            return $this->resolver->inherit($user, 'parts', $attribute) ?? false;
        }

        //Deny access by default.
        return false;
    }
}
Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00			`<?php`

			`namespace App\Security\Voter;`

Added entities and properties for some future features. 2019-08-12 15:47:57 +02:00			`use App\Entity\Parts\Part;`
			`use App\Entity\UserSystem\User;`
Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00			`use Symfony\Component\Security\Core\Authorization\Voter\Voter;`

			`/**`
			`* A Voter that votes on Part entities.`
			`*`
			`* See parts permissions for valid operations.`
			`*/`
Use anonymous user permissions, if nobody is logged in. 2019-03-19 17:17:04 +01:00			`class PartVoter extends ExtendedVoter`
Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00			`{`
Fixed some inspection issues. 2019-03-20 23:24:20 +01:00			`public const READ = 'read';`
Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00
			`protected function supports($attribute, $subject)`
			`{`
			`// replace with your own logic`
			`// https://symfony.com/doc/current/security/voters.html`
			`//return ($subject instanceof Part \|\| in_array($subject, ['PERM_parts', 'PERM_parts_name']));`

Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`if ($subject instanceof Part) {`
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`//Check if a sub permission should be checked -> $attribute has format name.edit`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`if (false !== strpos($attribute, '.')) {`
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`[$perm, $op] = explode('.', $attribute);`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`return in_array($op, $this->resolver->listOperationsForPermission('parts_'.$perm), false);`
			`}`

			`return in_array($attribute, $this->resolver->listOperationsForPermission('parts'), false);`
Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00			`}`

			`return false;`
			`}`

Use anonymous user permissions, if nobody is logged in. 2019-03-19 17:17:04 +01:00			`protected function voteOnUser($attribute, $subject, User $user): bool`
			`{`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`if ($subject instanceof Part) {`
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`//Check for sub permissions`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`if (false !== strpos($attribute, '.')) {`
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`[$perm, $op] = explode('.', $attribute);`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00
			`return $this->resolver->inherit($user, 'parts_'.$perm, $op) ?? false;`
Check permissions in edit part form. 2019-03-19 19:00:39 +01:00			`}`

Added a simple Voter for checking, if a user is allowed, to view/edit/create a part. 2019-03-18 19:05:41 +01:00			`//Null concealing operator means, that no`
			`return $this->resolver->inherit($user, 'parts', $attribute) ?? false;`
			`}`

			`//Deny access by default.`
			`return false;`
			`}`
			`}`