src/Security/Voter/RouteVoter.php line 16

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voter;
  5. use App\Entity\Affiliate;
  6. use App\Entity\AffiliateIP;
  7. use App\Utils\RoutePathUtils;
  8. use App\Utils\UserUtils;
  9. use Doctrine\ORM\EntityManager;
  10. use Symfony\Bundle\FrameworkBundle\Routing\Router;
  11. use Symfony\Component\DependencyInjection\ContainerInterface;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  14. use Symfony\Component\HttpFoundation\Request;
  16. class RouteVoter extends Voter
  17. {
  19.     public static $allowRoutes = [
  20.         'login',
  21.         'logout',
  22.         'push_alerts'
  23.     ];
  24.     protected $container;
  25.     /** @var  EntityManager $em */
  26.     protected $em;
  28.     public function __construct(ContainerInterface $container// this is @service_container
  29.     {
  30.         $this->container $container;
  31.         $this->em $this->container->get('doctrine');
  32.     }
  35.     protected function supports($attribute$subject)
  36.     {
  37.         $allRouteNames RoutePathUtils::getAllName($this->container);
  38.         $allRouteNames array_merge($allRouteNamesself::$allowRoutes);
  40.         if (in_array($attribute$allRouteNames)) {
  41.             return true;
  42.         }
  44.         return false;
  45.     }
  47.     protected function voteOnAttribute($attribute$subjectTokenInterface $token)
  48.     {
  49.         if (in_array($attributeself::$allowRoutes)) {
  50.             return true;
  51.         }
  53.         $isGranted false;
  55.         if ($subject instanceof Request) {
  56.             /** @var Request $request */
  57.             $request $subject;
  59.             $ipAddress $subject->getClientIp();
  61.             /** @var AffiliateIP $IP */
  62.             if ($request->request->has('afid') && ($AFID $this->em->getRepository(Affiliate::class)->findOneBy(['name' => $request->request->get('afid')])) !== null) {
  63.                 /** @var AffiliateIP $IP */
  64.                 if (($IP $this->em->getRepository(AffiliateIP::class)->findOneBy(['affiliate' => $AFID->getId()])) !== null
  65.                     && $IP->getIPaddress() === '*'
  66.                 ) {
  67.                     $isGranted true;
  68.                 } elseif (($IP $this->em->getRepository(AffiliateIP::class)->findOneBy(['IPaddress' => $ipAddress'affiliate' => $AFID->getId()])) !== null) {
  69.                     $isGranted true;
  70.                 }
  71.             } elseif (($IP $this->em->getRepository(AffiliateIP::class)->findOneBy(['IPaddress' => $ipAddress])) !== null) {
  72.                 $isGranted true;
  73.             }
  74.         }
  76.         $afids UserUtils::getAfids($token->getUser());
  78.         if (count($afids) && $this->em->getRepository(Affiliate::class)->findBy(['id' => $afids]) !== null) {
  79.             if (in_array($attribute, ['admin_access_index''admin_access_remove''admin_access_new'])) {
  80.                 $isGranted true;
  81.             }
  82.         }
  84.         return $isGranted;
  85.     }
  87. }