<?php
namespace App\Security\Voter;
use App\Entity\Shareregister;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
use Symfony\Component\Security\Core\User\UserInterface;
class InvestorVoter extends Voter
{
protected function supports($attribute, $subject)
{
return in_array($attribute, ['PUB_ACCESS'])
&& $subject instanceof \App\Entity\Pub;
}
protected function voteOnAttribute($attribute, $subject, TokenInterface $token)
{
$user = $token->getUser();
if (!$user instanceof UserInterface) {
return false;
}
if(in_array('ROLE_SUPER_ADMIN', $user->getRoles())) {
return true;
}
switch ($attribute) {
case 'PUB_ACCESS':
/** @var Shareregister $share */
foreach ($user->getShares() as $share) {
if($share->getPub()->getId() == $subject->getId()) {
return true;
}
}
return false;
break;
}
return false;
}
}