<?php
namespace App\Security\Voter;
use App\Entity\Room;
use App\Entity\User;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
class UserVoter extends Voter
{
protected function supports($attribute, $subject): bool
{
$supportsAttribute = in_array($attribute, ['IS_OWNER']);
$supportsSubject = $subject instanceof User;
return $supportsAttribute && $supportsSubject;
}
/**
* @param string $attribute
* @param User $subject
* @param TokenInterface $token
* @return bool
*/
protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
{
$user = $token->getUser();
if (!$user instanceof User) {
return false;
}
switch ($attribute) {
case 'IS_OWNER':
if ($user === $subject) {
return true;
}
case 'ROOM_ADMIN':
/** @var Room $subject */
if ($subject->getAdmins()->contains($user)) {
return true;
}
}
return false;
}
}