vendor/pimcore/portal-engine/src/Service/Security/Voter/StatisticExplorerAccessVoter.php line 30

Open in your IDE?
  1. <?php
  3. /**
  4.  * Pimcore
  5.  *
  6.  * This source file is available under following license:
  7.  * - Pimcore Commercial License (PCL)
  8.  *
  9.  *  @copyright  Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  10.  *  @license    http://www.pimcore.org/license     PCL
  11.  */
  13. namespace Pimcore\Bundle\PortalEngineBundle\Service\Security\Voter;
  15. use Pimcore\Bundle\PortalEngineBundle\Enum\Permission;
  16. use Pimcore\Bundle\PortalEngineBundle\Model\DataObject\PortalUserInterface;
  17. use Pimcore\Bundle\PortalEngineBundle\Service\PortalConfig\PortalConfigService;
  18. use Pimcore\Bundle\PortalEngineBundle\Service\Security\PermissionService;
  19. use Pimcore\Bundle\PortalEngineBundle\Service\Security\Traits\SecurityServiceAware;
  20. use Pimcore\Model\DataObject\Concrete;
  21. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  22. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  23. use Symfony\Component\Security\Core\Security;
  25. /**
  26.  * Class StatisticExplorerAccessVoter
  27.  *
  28.  * @package Pimcore\Bundle\PortalEngineBundle\Service\Security\Voter
  29.  */
  30. class StatisticExplorerAccessVoter extends Voter
  31. {
  32.     use SecurityServiceAware;
  34.     /**
  35.      * @var PortalConfigService
  36.      */
  37.     protected $portalConfigService;
  39.     /**
  40.      * @var Security $security
  41.      */
  42.     protected $security;
  44.     /**
  45.      * @var PermissionService
  46.      */
  47.     protected $permissionService;
  49.     /**
  50.      * StatisticExplorerAccessVoter constructor.
  51.      *
  52.      * @param PortalConfigService $portalConfigService
  53.      * @param Security $security
  54.      * @param PermissionService $permissionService
  55.      */
  56.     public function __construct(PortalConfigService $portalConfigServiceSecurity $securityPermissionService $permissionService)
  57.     {
  58.         $this->portalConfigService $portalConfigService;
  59.         $this->security $security;
  60.         $this->permissionService $permissionService;
  61.     }
  63.     /**
  64.      * Determines if the attribute and subject are supported by this voter.
  65.      *
  66.      * @param string $attribute An attribute
  67.      * @param mixed $subject The subject to secure, e.g. an object the user wants to access or any other PHP type
  68.      *
  69.      * @return bool True if the attribute and subject are supported, false otherwise
  70.      */
  71.     protected function supports($attribute$subject)
  72.     {
  73.         return $this->portalConfigService->isPortalEngineSite() && $attribute === Permission::STATISTIC_EXPLORER_ACCESS;
  74.     }
  76.     /**
  77.      * Perform a single access check operation on a given attribute, subject and token.
  78.      * It is safe to assume that $attribute and $subject already passed the "supports()" method check.
  79.      *
  80.      * @param string $attribute
  81.      * @param mixed $subject
  82.      *
  83.      * @return bool
  84.      */
  85.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  86.     {
  87.         /** @var int $portalId */
  88.         $portalId $this->portalConfigService->getCurrentPortalConfig()->getPortalId();
  89.         /** @var PortalUserInterface|Concrete $user */
  90.         $user $this->securityService->getPortalUser();
  92.         return $user instanceof PortalUserInterface && $this->permissionService->isAllowed($userPermission::STATISTIC_EXPLORER_ACCESS Permission::PERMISSION_DELIMITER $portalId);
  93.     }
  94. }