bundles/BackofficeBundle/Security/Authorization/Voter/SubscriptionVoter.php line 38

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. /**
  6. * SubscriptionVoter.php File.
  7. * This file is part of the Payment.net Project.
  8. *
  9. * PHP version 5
  10. *
  11. * @category Application
  12. * @package Bdm\BackofficeBundle\Security\Authorization\Voter
  13. * @author Pavel Baraulya <pbaraulya@bdmultimedia.fr>
  14. * @link http://www.payment.net/
  15. *
  16. * FEATURES :
  17. * ==========
  18. *
  19. * TODO-LIST :
  20. * ===========
  21. *
  22. * HISTORY :
  23. * =========
  24. * 20150709 - Pavel Baraulya
  25. *
  26. **/
  27. namespace Bdm\BackofficeBundle\Security\Authorization\Voter;
  29. use Bdm\BackofficeBundle\Entity\Application;
  30. use Bdm\BackofficeBundle\Entity\Merchant;
  31. use Bdm\CheckoutBundle\Entity\Subscription;
  32. use Bdm\CheckoutBundle\Entity\SubscriptionPlan;
  33. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  35. /**
  36. * Voter for subscription entity
  37. */
  38. class SubscriptionVoter extends AbstractVoter
  39. {
  40. /**
  41. * @param string $sAttribute attribute
  42. * @param mixed $oSubject subject
  43. * @return bool
  44. */
  45. #[\Override]
  46. public function supports($sAttribute, $oSubject)
  47. {
  48. return $oSubject instanceof Subscription && parent::supports($sAttribute, $oSubject);
  49. }
  51. /**
  52. * @param string $sAttr attr
  53. * @param mixed $mEntity entity
  54. * @param TokenInterface $oToken token
  55. *
  56. * @return bool
  57. */
  58. protected function voteOnAttribute($sAttr, $mEntity, TokenInterface $oToken)
  59. {
  60. $oUser = $oToken->getUser();
  61. if (!$oUser instanceof Merchant) {
  62. return false;
  63. }
  65. return (bool) $this->findByOwner($oUser->getId(), $mEntity->getId());
  66. }
  68. /**
  69. * Find entity by owner id
  70. *
  71. * @param int $iOwnerId owner id
  72. * @param int $iEntityId entity id
  73. *
  74. * @return mixed
  75. * @throws \Doctrine\ORM\NonUniqueResultException
  76. */
  77. protected function findByOwner($iOwnerId, $iEntityId)
  78. {
  79. $oQuery = $this->oEm->createQuery('
  80. SELECT s FROM ' . Subscription::class . ' s
  81. WHERE s.oSubscriptionPlan IN (
  82. SELECT sp.iId FROM ' . SubscriptionPlan::class . ' sp
  83. WHERE sp.oApplication IN (
  84. SELECT a.iId FROM ' . Application::class . ' a
  85. WHERE a.oMerchant = :owner_id
  86. )
  87. ) AND s.iId = :entity_id
  88. ');
  89. $oQuery->setParameters(['owner_id' => $iOwnerId, 'entity_id' => $iEntityId]);
  90. return $oQuery->getOneOrNullResult();
  91. }
  92. }