Added permission to control who can access label scanner.

config/permissions.yaml

@@ -291,6 +291,9 @@ perms: # Here comes a list with all Permission names (they have a perm_[name] co
       timetravel:
         label: "perm.tools.timeTravel"
         bit: 14
+      label_scanner:
+        label: "perm.tools.label_scanner"
+        bit: 16
 
   groups:
     label: "perm.groups"

src/Controller/ScanController.php

@@ -51,6 +51,8 @@ class ScanController extends AbstractController
      */
     public function dialog(Request $request): Response
     {
+        $this->denyAccessUnlessGranted('@tools.label_scanner');
+
         $form = $this->createForm(ScanDialogType::class);
         $form->handleRequest($request);
 

src/Services/Trees/ToolsTreeBuilder.php

@@ -125,10 +125,12 @@ class ToolsTreeBuilder
             );
         }
 
+        if ($this->security->isGranted('@tools.label_scanner')) {
             $nodes[] = new TreeViewNode(
                 $this->translator->trans('tree.tools.tools.label_scanner'),
                 $this->urlGenerator->generate('scan_dialog')
             );
+        }
 
         return $nodes;
     }

templates/_navbar.html.twig

@@ -17,9 +17,11 @@
 
     <div class="collapse navbar-collapse" id="navbarContent">
         <ul class="navbar-nav mr-auto">
+            {% if is_granted("@tools.label_scanner") %}
                 <li class="nav-item">
                     <a class="nav-link" href="{{ url("scan_dialog") }}">{% trans %}navbar.scanner.link{% endtrans %}</a>
                 </li>
+            {% endif %}
         </ul>
 
         <div class="form-inline my-2 my-lg-0 ml-auto" id="searchbar">