<?php
namespace App\Security\Voter;
use App\Entity\Company\User;
use App\Entity\Credit\Credit;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
use Symfony\Component\Security\Core\User\UserInterface;
class CreditVoter extends Voter
{
public const EDIT = 'EDIT';
public const VIEW = 'VIEW';
public const DELETE = 'DELETE';
public const CONTINUE = 'CONTINUE';
public const SEND_MAIL = 'SEND_MAIL';
protected function supports(string $attribute, mixed $subject): bool
{
return $subject instanceof Credit;
}
protected function voteOnAttribute(string $attribute, mixed $subject, TokenInterface $token): bool
{
$user = $token->getUser();
if (!$user instanceof UserInterface) {
return false;
}
return match ($attribute) {
self::EDIT => $this->canPerformSimpleAction($subject, $user),
self::VIEW => $this->canPerformSimpleAction($subject, $user),
self::DELETE => $this->canPerformSimpleAction($subject, $user),
self::CONTINUE => $this->canContinue($subject, $user),
self::SEND_MAIL => $this->canSendMail($subject, $user)
};
}
/**
*
* @param Credit $credit
* @param User $user
* @return boolean
*/
private function canPerformSimpleAction(Credit $credit, User $user): bool
{
return $credit->getCompany()->getId() == $user->getCompany()->getId();
}
/**
*
* @param Credit $credit
* @param User $user
* @return boolean
*/
private function canContinue(Credit $credit, User $user): bool
{
return $this->canPerformSimpleAction($credit, $user) && $credit->getStatus() == 0;
}
/**
*
* @param Credit $invoice
* @param User $user
* @return boolean
*/
private function canSendMail(Credit $credit, User $user): bool
{
return $this->canPerformSimpleAction($credit, $user) && $credit->getStatus() == 1;
}
}