<?php/** * @license SILK SOFTWARE HOUSE SP Z O O */namespace App\Security;use App\Entity\ChannelSetting;use App\Entity\Customer;use App\Entity\License;use App\Entity\Measurement;use App\Entity\User;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;/** * Class ChannelSettingVoter. */class ChannelSettingVoter extends Voter{ const EDIT = 'edit'; const DELETE = 'delete'; /** * Supports. * * @param string $attribute * @param License $subject * * @return bool */ protected function supports($attribute, $subject) { // if the attribute isn't one we support, return false if (!in_array($attribute, [self::DELETE, self::EDIT])) { return false; } if (!$subject instanceof ChannelSetting) { return false; } return true; } /** * Vote on attribute. * * @param string $attribute * @param ChannelSetting $subject * @param TokenInterface $token * * @return bool */ protected function voteOnAttribute($attribute, $subject, TokenInterface $token) { $user = $token->getUser(); if (!$user instanceof User) { // the user must be logged in; if not, deny access return false; } if ($user->hasRole('ROLE_ADMIN')) { return true; } if (!$subject->getChannel()) { return true; } return $user->getActiveCustomer() && $user->getActiveCustomer()->getId() === $subject->getChannel()->getMeasurement()->getCustomer()->getId(); }}