vendor/ibexa/cart/src/lib/Security/Authorization/PolicyVoter.php line 16

Open in your IDE?
  1. <?php
  3. /**
  4. * @copyright Copyright (C) Ibexa AS. All rights reserved.
  5. * @license For full copyright and license information view LICENSE file distributed with this source code.
  6. */
  7. declare(strict_types=1);
  9. namespace Ibexa\Cart\Security\Authorization;
  11. use Ibexa\Contracts\Core\Repository\PermissionResolver;
  12. use Ibexa\Contracts\ProductCatalog\Permission\Policy\PolicyInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  16. final class PolicyVoter implements VoterInterface
  17. {
  18. private PermissionResolver $permissionResolver;
  20. public function __construct(PermissionResolver $permissionResolver)
  21. {
  22. $this->permissionResolver = $permissionResolver;
  23. }
  25. /**
  26. * Checks if the voter supports the given attribute.
  27. *
  28. * @param mixed $attribute An attribute
  29. *
  30. * @return bool true if this Voter supports the attribute, false otherwise
  31. */
  32. public function supportsAttribute($attribute): bool
  33. {
  34. return $attribute instanceof PolicyInterface;
  35. }
  37. /**
  38. * @param array<mixed> $attributes
  39. */
  40. public function vote(TokenInterface $token, $object, array $attributes): int
  41. {
  42. foreach ($attributes as $attribute) {
  43. if ($this->supportsAttribute($attribute)) {
  44. if ($this->hasAccess($attribute)) {
  45. return VoterInterface::ACCESS_DENIED;
  46. }
  48. return VoterInterface::ACCESS_GRANTED;
  49. }
  50. }
  52. return VoterInterface::ACCESS_ABSTAIN;
  53. }
  55. private function hasAccess(PolicyInterface $attribute): bool
  56. {
  57. return $this->permissionResolver->hasAccess(
  58. $attribute->getModule(),
  59. $attribute->getFunction()
  60. ) === false;
  61. }
  62. }