Check permissions for time travel and element undo.

2025-09-01 08:17:00 +02:00 · 2020-03-07 20:49:52 +01:00 · 2020-03-07 20:49:52 +01:00 · 8a61b465d0
commit 8a61b465d0
parent 254d4e6c69
23 changed files with 370 additions and 90 deletions
--- a/src/Security/Voter/LogEntryVoter.php
+++ b/src/Security/Voter/LogEntryVoter.php
@ -51,25 +51,21 @@ class LogEntryVoter extends ExtendedVoter

    protected function voteOnUser($attribute, $subject, User $user): bool
    {
-        if ($subject instanceof AbstractLogEntry) {
-            if ('delete' === $attribute) {
-                return $this->resolver->inherit($user, 'system', 'delete_logs') ?? false;
-            }
-
-            if ('read' === $attribute) {
-                //Allow read of the users own log entries
-                if (
-                    $subject->getUser() === $user
-                    && $this->resolver->inherit($user, 'self', 'show_logs')
-                ) {
-                    return true;
-                }
-
-                return $this->resolver->inherit($user, 'system', 'show_logs') ?? false;
-            }
+        if ('delete' === $attribute) {
+            return $this->resolver->inherit($user, 'system', 'delete_logs') ?? false;
        }

-        return false;
+        if ('read' === $attribute) {
+            //Allow read of the users own log entries
+            if (
+                $subject->getUser() === $user
+                && $this->resolver->inherit($user, 'self', 'show_logs')
+            ) {
+                return true;
+            }
+
+            return $this->resolver->inherit($user, 'system', 'show_logs') ?? false;
+        }
    }

    protected function supports($attribute, $subject)