vendor/ibexa/shipping/src/lib/Security/Authorization/PolicyVoter.php line 16

Open in your IDE?
  1. <?php
  3. /**
  4. * @copyright Copyright (C) Ibexa AS. All rights reserved.
  5. * @license For full copyright and license information view LICENSE file distributed with this source code.
  6. */
  7. declare(strict_types=1);
  9. namespace Ibexa\Shipping\Security\Authorization;
  11. use Ibexa\Contracts\Core\Repository\PermissionResolver;
  12. use Ibexa\Contracts\ProductCatalog\Permission\Policy\PolicyInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  16. final class PolicyVoter implements VoterInterface
  17. {
  18. private PermissionResolver $permissionResolver;
  20. public function __construct(PermissionResolver $permissionResolver)
  21. {
  22. $this->permissionResolver = $permissionResolver;
  23. }
  25. /**
  26. * Checks if the voter supports the given attribute.
  27. *
  28. * @param mixed $attribute An attribute
  29. *
  30. * @return bool true if this Voter supports the attribute, false otherwise
  31. */
  32. public function supportsAttribute($attribute): bool
  33. {
  34. return $attribute instanceof PolicyInterface;
  35. }
  37. /**
  38. * @param array<mixed> $attributes
  39. */
  40. public function vote(TokenInterface $token, $object, array $attributes): int
  41. {
  42. foreach ($attributes as $attribute) {
  43. if ($this->supportsAttribute($attribute)) {
  44. /** @var \Ibexa\Contracts\ProductCatalog\Permission\Policy\PolicyInterface $attribute */
  45. if ($this->permissionResolver->hasAccess($attribute->getModule(), $attribute->getFunction()) === false) {
  46. return VoterInterface::ACCESS_DENIED;
  47. }
  49. return VoterInterface::ACCESS_GRANTED;
  50. }
  51. }
  53. return VoterInterface::ACCESS_ABSTAIN;
  54. }
  55. }