src/Security/Voter/UserVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\User;
  6. use EasyCorp\Bundle\EasyAdminBundle\Security\Permission;
  7. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  8. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  9. use Symfony\Component\Security\Core\User\UserInterface;
  11. class UserVoter extends Voter
  12. {
  13.     protected function supports($attribute$subject)
  14.     {
  15.         // dump([
  16.         //     "supports" => $attribute,
  17.         //     'subject' => $subject,
  18.         // ]);
  20.         // replace with your own logic
  21.         // https://symfony.com/doc/current/security/voters.html
  23.         return in_array($attribute, [Permission::EA_ACCESS_ENTITY])
  24.             && $subject->getInstance() instanceof User;
  25.     }
  27.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  28.     {
  29.         $user $token->getUser();
  30.         // if the user is anonymous, do not grant access
  31.         if (!$user instanceof UserInterface) {
  32.             return false;
  33.         }
  35.         // ... (check conditions and return true to grant permission) ...
  36.         switch ($attribute) {
  37.             case Permission::EA_ACCESS_ENTITY:
  39.                 // dump([
  40.                 //     "voteOnAttribute" => $attribute,
  41.                 //     'subject' => $subject,
  42.                 //     'token' => $token,
  43.                 // ]);
  45.                 switch ($subject->getFqcn()) {
  47.                     case User::class:
  48.                         // User can access his own record
  49.                         return $subject->getInstance() == $user;
  50.                 }
  51.                 break;
  52.         }
  54.         throw new \LogicException('This code should not be reached!');
  55.     }
  56. }