src/EventSubscriber/MaintenanceElement/MaintenanceElementPreWriteSubscriber.php line 49

Open in your IDE?
  1. <?php
  2. /**
  3.  * Created by PhpStorm.
  4.  * User: SUSAN MEDINA
  5.  * Date: 15/04/2019
  6.  * Time: 09:39 PM
  7.  */
  9. namespace App\EventSubscriber\MaintenanceElement;
  11. use Symfony\Contracts\Translation\TranslatorInterface;
  12. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  13. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\HttpKernel\Event\ViewEvent;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpKernel\KernelEvents;
  18. use ApiPlatform\Core\EventListener\EventPriorities;
  19. use App\Exception\AccessDeniedException;
  20. use App\Exception\NotFoundException;
  21. use App\Services\VendorService;
  22. use App\Services\UtilsService;
  23. use App\Entity\App\MaintenanceElement;
  24. use App\Entity\App\User;
  25. use App\Entity\App\Role;
  27. class MaintenanceElementPreWriteSubscriber implements EventSubscriberInterface
  28. {
  29.     private $tokenStorage;
  30.     private $authorizationChecker;
  31.     private $utilsService;
  32.     private $vendorService;
  33.     private $translator;
  35.     public function __construct(
  36.         TokenStorageInterface $tokenStorage,
  37.         AuthorizationCheckerInterface $checker,
  38.         UtilsService $utilsService,
  39.         VendorService $vendorService,
  40.         TranslatorInterface $translator
  41.     ){
  42.         $this->tokenStorage $tokenStorage;
  43.         $this->authorizationChecker $checker;
  44.         $this->utilsService $utilsService;
  45.         $this->vendorService $vendorService;
  46.         $this->translator $translator;
  47.     }
  49.     public function onKernelView(ViewEvent $event)
  50.     {
  51.         if ($this->utilsService->isAPublicRequest($event)) {
  52.             return;
  53.         }
  54.         $maintenanceElement $event->getControllerResult();
  55.         $request $event->getRequest();
  56.         $method $request->getMethod();
  57.         $userCurrent $this->tokenStorage->getToken()->getUser();
  59.         if (!($maintenanceElement instanceof MaintenanceElement) ||
  60.             (Request::METHOD_POST !== $method && Request::METHOD_PUT !== $method && Request::METHOD_DELETE !== $method)
  61.         )
  62.             return;
  64.         if ($this->authorizationChecker->isGranted('ROLE_SUPERADMIN'))
  65.             return;
  67.         if(!($userCurrent instanceof User))
  68.             throw new NotFoundException($this->translator->trans('User current not found'));
  70.         $vendor $maintenanceElement->getVendor();
  71.         $vendorStaff $this->vendorService->getVendorStaff(null$userCurrent$vendor);
  72.         if ($vendorStaff === null) {
  73.             throw new AccessDeniedException(
  74.                 $this->translator->trans('Access denied. it does not belong to the vendor'),
  75.                 ['%vendor%' => $vendor->getName()]
  76.             );
  77.         }
  79.         $controlAccess = [Role::ROLE_ADMIN];
  80.         if (!$this->vendorService->isUserRoleInToVendor($vendor$userCurrent$controlAccess)) {
  81.             $controlAccessTranslator = [];
  82.             foreach ($controlAccess as $roleName) {
  83.                 $controlAccessTranslator[] = $this->translator->trans($roleName);
  84.             }
  85.             throw new AccessDeniedException(
  86.                 $this->translator->trans('access_allowed_only_for') . (implode(', '$controlAccessTranslator))
  87.             );
  88.         }
  90.         return;
  91.     }
  93.     public static function getSubscribedEvents()
  94.     {
  95.         return [
  96.             KernelEvents::VIEW => ['onKernelView'EventPriorities::PRE_WRITE]
  97.         ];
  98.     }
  99. }