vendor/pimcore/portal-engine/src/Service/Security/Voter/GuestUserPermissionVoter.php line 23

Open in your IDE?
  1. <?php
  3. /**
  4.  * Pimcore
  5.  *
  6.  * This source file is available under following license:
  7.  * - Pimcore Commercial License (PCL)
  8.  *
  9.  *  @copyright  Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  10.  *  @license    http://www.pimcore.org/license     PCL
  11.  */
  13. namespace Pimcore\Bundle\PortalEngineBundle\Service\Security\Voter;
  15. use Pimcore\Bundle\PortalEngineBundle\Model\DataObject\PortalUserInterface;
  16. use Pimcore\Bundle\PortalEngineBundle\Service\PortalConfig\PortalConfigService;
  17. use Pimcore\Bundle\PortalEngineBundle\Service\Security\GuestUserPermissionService;
  18. use Pimcore\Bundle\PortalEngineBundle\Service\Security\Traits\SecurityServiceAware;
  19. use Pimcore\Model\DataObject\Concrete;
  20. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  21. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  23. class GuestUserPermissionVoter extends Voter
  24. {
  25.     use SecurityServiceAware;
  27.     /**
  28.      * @var PortalConfigService
  29.      */
  30.     protected $portalConfigService;
  32.     /**
  33.      * @var GuestUserPermissionService
  34.      */
  35.     protected $guestUserPermissionService;
  37.     /**
  38.      * @param PortalConfigService $portalConfigService
  39.      * @param GuestUserPermissionService $guestUserPermissionService
  40.      */
  41.     public function __construct(PortalConfigService $portalConfigServiceGuestUserPermissionService $guestUserPermissionService)
  42.     {
  43.         $this->portalConfigService $portalConfigService;
  44.         $this->guestUserPermissionService $guestUserPermissionService;
  45.     }
  47.     /**
  48.      * Determines if the attribute and subject are supported by this voter.
  49.      *
  50.      */
  51.     protected function supports(string $attributemixed $subject): bool
  52.     {
  53.         return $this->portalConfigService->isPortalEngineSite() &&
  54.             in_array($attribute$this->guestUserPermissionService->getGuestUserRelevantPermissions());
  55.     }
  57.     /**
  58.      * Perform a single access check operation on a given attribute, subject and token.
  59.      * It is safe to assume that $attribute and $subject already passed the "supports()" method check.
  60.      *
  61.      */
  62.     protected function voteOnAttribute(string $attributemixed $subjectTokenInterface $token): bool
  63.     {
  64.         /** @var PortalUserInterface|Concrete $user */
  65.         $user $this->securityService->getPortalUser();
  67.         return $this->guestUserPermissionService->checkGuestUserPermissions($attribute$user);
  68.     }
  69. }