src/EventSubscriber/User/UserPreWriteSubscriber.php line 60

Open in your IDE?
  1. <?php
  2. /**
  3.  * Created by PhpStorm.
  4.  * User: SUSAN MEDINA
  5.  * Date: 18/03/2019
  6.  * Time: 09:09 AM
  7.  */
  9. namespace App\EventSubscriber\User;
  11. use App\Services\UtilsService;
  12. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  13. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\HttpKernel\Event\ViewEvent;
  16. use Symfony\Component\HttpKernel\KernelEvents;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Doctrine\ORM\EntityManagerInterface;
  19. use ApiPlatform\Core\EventListener\EventPriorities;
  20. use App\Repository\App\VendorRepository;
  21. use App\Repository\App\RoleRepository;
  22. use App\Exception\AccessDeniedException;
  23. use App\Exception\NotFoundException;
  24. use App\Services\VendorService;
  25. use App\Entity\App\User;
  27. class UserPreWriteSubscriber implements EventSubscriberInterface
  28. {
  29.     private $tokenStorage;
  30.     private $authorizationChecker;
  31.     private $vendorRepository;
  32.     private $roleRepository;
  33.     private $vendorService;
  34.     private $entityManager;
  35.     private $utilsService;
  37.     public function __construct(
  38.         TokenStorageInterface $tokenStorage,
  39.         AuthorizationCheckerInterface $checker,
  40.         VendorRepository $vendorRepository,
  41.         RoleRepository $roleRepository,
  42.         VendorService $vendorService,
  43.         EntityManagerInterface $entityManager,
  44.         UtilsService $utilsService)
  45.     {
  46.         $this->tokenStorage $tokenStorage;
  47.         $this->authorizationChecker $checker;
  48.         $this->vendorService $vendorService;
  49.         $this->vendorRepository $vendorRepository;
  50.         $this->roleRepository $roleRepository;
  51.         $this->entityManager $entityManager;
  52.         $this->utilsService $utilsService;
  53.     }
  55.     /**
  56.      * @param ViewEvent $event
  57.      * @throws AccessDeniedException
  58.      * @throws NotFoundException
  59.      */
  60.     public function onKernelView(ViewEvent $event)
  61.     {
  62.         if ($this->utilsService->isAPublicRequest($event)) {
  63.             return;
  64.         }
  66.         $user $event->getControllerResult();
  67.         $method $event->getRequest()->getMethod();
  68.         $userCurrent $this->tokenStorage->getToken()->getUser();
  70.         if (!($user instanceof User) || Request::METHOD_DELETE !== $method)
  71.             return;
  73.         if (!$userCurrent instanceof User)
  74.             throw new NotFoundException('User not found');
  76.         if (!$userCurrent === $user) {
  77.             throw new AccessDeniedException('You can not delete yourself');
  78.         }
  80.         if ($this->authorizationChecker->isGranted('ROLE_SUPERADMIN'))
  81.         {
  82.             $this->onDeleteCascade($user);
  84.             return;
  85.         }
  87.         throw new AccessDeniedException('Action Denied');
  89.     }
  91.     /**
  92.      * @param User $user
  93.      */
  94.     protected function onDeleteCascade(User $user)
  95.     {
  96.         foreach ($user->getVendorStaff() as $vendorStaff) {
  97.             $this->entityManager->remove($vendorStaff);
  98.         }
  100.         $this->entityManager->flush();
  101.     }
  103.     public static function getSubscribedEvents()
  104.     {
  105.         return [
  106.             KernelEvents::VIEW => ['onKernelView'EventPriorities::PRE_WRITE]
  107.         ];
  108.     }
  109. }