src/Invoice/Security/InvoiceDraftVoter.php line 26

  1. <?php
  3. declare(strict_types=1);
  4. /**
  5.  * Copyright (c) 2020 TECLA Consulting Group oü.
  6.  * All rights reserved.
  7.  *
  8.  * This unpublished material is proprietary to TECLA Consulting Group oü.
  9.  * All rights reserved. The methods and
  10.  * techniques described herein are considered trade secrets
  11.  * and/or confidential. Reproduction or distribution, in whole
  12.  * or in part, is forbidden except by express written permission
  13.  * of TECLA Consulting Group oü.
  14.  *
  15.  * @author    Matúš Sýkorjak <matus@tecla.no>
  16.  * @copyright 2020 TECLA Consulting Group oü
  17.  */
  19. namespace App\Invoice\Security;
  21. use App\Contact\Security\ContactContextInterface;
  22. use App\Invoice\Model\InvoiceDraftInterface;
  23. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  24. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  26. final class InvoiceDraftVoter extends Voter
  27. {
  28.     public const UPDATE 'invoice_draft.update';
  29.     public const COPY 'invoice_draft.copy';
  30.     public const EXPORT 'invoice_draft.export';
  31.     public const SEND 'invoice_draft.send';
  32.     public const CREATE_INVOICE 'invoice_draft.create_invoice';
  34.     public const SUPPORTED_ATTRIBUTES = [
  35.         self::UPDATE,
  36.         self::COPY,
  37.         self::EXPORT,
  38.         self::SEND,
  39.         self::CREATE_INVOICE,
  40.     ];
  42.     private ContactContextInterface $contactContext;
  44.     public function __construct(ContactContextInterface $contactContext)
  45.     {
  46.         $this->contactContext $contactContext;
  47.     }
  49.     protected function supports($attribute$subject): bool
  50.     {
  51.         if (true === \in_array($attributeself::SUPPORTED_ATTRIBUTEStrue)) {
  52.             return null === $subject || true === $subject instanceof InvoiceDraftInterface;
  53.         }
  55.         return false;
  56.     }
  58.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  59.     {
  60.         switch ($attribute) {
  61.             case self::UPDATE:
  62.                 return $this->canUpdate($subject);
  64.             case self::COPY:
  65.                 return $this->canCopy($subject);
  67.             case self::EXPORT:
  68.                 return $this->canExport($subject);
  70.             case self::SEND:
  71.                 return $this->canSend($subject);
  73.             case self::CREATE_INVOICE:
  74.                 return $this->canView($subject);
  75.         }
  77.         throw new \LogicException('This code should not be reached!');
  78.     }
  80.     private function canUpdate(?InvoiceDraftInterface $invoiceDraft): bool
  81.     {
  82.         return $this->canView($invoiceDraft);
  83.     }
  85.     private function canCopy(?InvoiceDraftInterface $draft): bool
  86.     {
  87.         return $this->canView($draft);
  88.     }
  90.     private function canExport(?InvoiceDraftInterface $invoiceDraft): bool
  91.     {
  92.         return $this->canView($invoiceDraft);
  93.     }
  95.     private function canSend(?InvoiceDraftInterface $draft): bool
  96.     {
  97.         return $this->canView($draft);
  98.     }
  100.     private function canView(?InvoiceDraftInterface $invoiceDraft): bool
  101.     {
  102.         if (null === $invoiceDraft) {
  103.             return false;
  104.         }
  106.         $currentContext $this->contactContext->getCurrent();
  108.         return null !== $currentContext && $invoiceDraft->getSupplier() === $currentContext;
  109.     }
  110. }