src/Security/Voter/FeatureVoter.php line 11

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Constant\Features;
  6. use App\Entity\User;
  7. use App\Service\Api\Subscription\FeatureService;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  11. class FeatureVoter extends Voter
  12. {
  13.     private $featureService;
  15.     public function __construct(FeatureService $featureService)
  16.     {
  17.         $this->featureService $featureService;
  18.     }
  20.     protected function supports(string $attribute$subject): bool
  21.     {
  22.         // Check if the attribute is a feature name or role
  23.         return (Features::findByName($attribute) || Features::findByRole($attribute)) !== null;
  24.     }
  26.     protected function voteOnAttribute(string $attribute$subjectTokenInterface $token): bool
  27.     {
  28.         $user $token->getUser();
  30.         if (!$user instanceof User) {
  31.             return false;
  32.         }
  34.         // Get feature data
  35.         $feature Features::findByName($attribute) ?? Features::findByRole($attribute);
  36.         if (!$feature) {
  37.             return false;
  38.         }
  40.         // First check if user has the required role
  41.         $requiredRole $feature['role'];
  42.         if (!in_array($requiredRole$user->getRoles())) {
  43.             return false;
  44.         }
  46.         // Then check feature access and limits using FeatureService
  47.         return $this->featureService->hasAccess($user$attribute);
  48.     }
  49. }