src/EventSubscriber/Category/CategoryPreWriteSubscriber.php line 55

Open in your IDE?
  1. <?php
  2. /**
  3.  * Created by PhpStorm.
  4.  * User: sebastiantovar
  5.  * Date: 2019-04-15
  6.  * Time: 17:56
  7.  */
  9. namespace App\EventSubscriber\Category;
  11. use ApiPlatform\Core\EventListener\EventPriorities;
  12. use App\Entity\App\Category;
  13. use App\Entity\App\Role;
  14. use App\Entity\App\User;
  15. use App\Services\UtilsService;
  16. use App\Services\VendorService;
  17. use App\Exception\AccessDeniedException;
  18. use App\Exception\NotFoundException;
  19. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  20. use Symfony\Component\HttpFoundation\Request;
  21. use Symfony\Component\HttpFoundation\Response;
  22. use Symfony\Component\HttpKernel\Event\ViewEvent;
  23. use Symfony\Component\HttpKernel\KernelEvents;
  24. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  25. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  26. use Symfony\Contracts\Translation\TranslatorInterface;
  28. class CategoryPreWriteSubscriber implements EventSubscriberInterface
  29. {
  30.     private $tokenStorage;
  31.     private $authorizationChecker;
  32.     private $vendorService;
  33.     private $utilsService;
  34.     private $translator;
  36.     public function __construct(
  37.         TokenStorageInterface $tokenStorage,
  38.         AuthorizationCheckerInterface $checker,
  39.         VendorService $vendorService,
  40.         UtilsService $utilsService,
  41.         TranslatorInterface $translator
  42.     ){
  43.         $this->tokenStorage $tokenStorage;
  44.         $this->authorizationChecker $checker;
  45.         $this->vendorService $vendorService;
  46.         $this->utilsService $utilsService;
  47.         $this->translator $translator;
  48.     }
  50.     /**
  51.      * @param ViewEvent $event
  52.      * @throws AccessDeniedException
  53.      * @throws NotFoundException
  54.      */
  55.     public function onKernelView(ViewEvent $event)
  56.     {
  57.         if ($this->utilsService->isAPublicRequest($event)) {
  58.             return;
  59.         }
  61.         $category $event->getControllerResult();
  62.         $request $event->getRequest();
  63.         $method $request->getMethod();
  64.         $userCurrent $this->tokenStorage->getToken()->getUser();
  66.         if (!($category instanceof Category) ||
  67.             (Request::METHOD_POST !== $method && Request::METHOD_PUT && Request::METHOD_DELETE !== $method)
  68.         )
  69.             return;
  71.         $locale $request->getLocale();
  72.         if ($this->tokenStorage->getToken()) {
  73.             $userCurrent $this->tokenStorage->getToken()->getUser();
  74.             if ($userCurrent instanceof User) {
  75.                 $locale $userCurrent->getLocale();
  76.             }
  77.         }
  79.         if (Request::METHOD_DELETE === $method) {
  80.             $resources $category->getResources();
  81.             $tasks $category->getTasks();
  82.             $maintenanceElements $category->getMaintenanceElements();
  83.             $locations $category->getLocations();
  84.             $vendorStaff $category->getVendorStaff();
  85.             $tickets $category->getTickets();
  87.             if($tickets){
  88.                 foreach ($tickets as $ticket){
  89.                     $ticket->setCategory(null);
  90.                 }
  91.             }
  92.             if($resources){
  93.                 foreach ($resources as $resource){
  94.                     $resource->setCategory(null);
  95.                 }
  96.             }
  97.             if($tasks){
  98.                 foreach ($tasks as $task){
  99.                     $task->setCategory(null);
  100.                 }
  101.             }
  102.             if($locations){
  103.                 foreach ($locations as $location){
  104.                     $location->removeCategory($category);
  105.                 }
  106.             }
  107.             if($maintenanceElements){
  108.                 foreach ($maintenanceElements as $maintenanceElement){
  109.                     $maintenanceElement->setFamily(null);
  110.                 }
  111.             }
  112.             if($vendorStaff){
  113.                 foreach ($vendorStaff as $staff){
  114.                     $staff->removeCategory($category);
  115.                 }
  116.             }
  117.             return;
  118.         }
  120.         if ($this->authorizationChecker->isGranted('ROLE_SUPERADMIN'))
  121.             return;
  123.         if (!$userCurrent instanceof User) {
  124.             throw new NotFoundException($this->translator->trans('User current not found'));
  125.         }
  127.         $controlAccess = [Role::ROLE_ADMIN];
  128.         if (!$this->vendorService->isUserRoleInToVendor($category->getVendor(), $userCurrent$controlAccess)) {
  129.             $controlAccessTranslator = [];
  130.             foreach ($controlAccess as $roleName) {
  131.                 $controlAccessTranslator[] = $this->translator->trans($roleName, [], null$locale);
  132.             }
  133.             $response = new Response();
  134.             $response->setContent(json_encode([
  135.                 'detail' => $this->translator->trans(
  136.                         'access_allowed_only_for',
  137.                         [],
  138.                         null,
  139.                         $locale
  140.                     ) . (implode(', '$controlAccessTranslator))
  141.             ]));
  142.             $response->setStatusCode(Response::HTTP_BAD_REQUEST);
  143.             $event->setResponse($response);
  145.             return;
  146.         }
  147.     }
  149.     /**
  150.      * @return array
  151.      */
  152.     public static function getSubscribedEvents()
  153.     {
  154.         return [
  155.             KernelEvents::VIEW => ['onKernelView'EventPriorities::PRE_WRITE]
  156.         ];
  157.     }
  158. }