src/Security/Voters/OrderVoter.php line 14

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voters;
  5. use App\Entity\CustomerQuotations;
  6. use App\Entity\OrderClaim;
  8. use App\Repository\PackagingTypeRepository;
  9. use App\Service\WorkflowHelper;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  12. use Symfony\Component\Security\Core\Security;
  14. class OrderVoter extends Voter
  15. {
  16.     private Security $security;
  18.     public const CAN_RATE 'order.can_rate';
  19.     public const CAN_DO_CLAIM 'order.can_claim';
  20.     public const CAN_RESOLVE_CLAIM 'order.can_resolve_claim';
  21.     public const CAN_VIEW 'order.can_view_claim';
  22.     public const CAN_REORDER 'order.can_reorder';
  23.     public const CAN_ADD_BATCH 'order.can_add_batch';
  24.     public const CAN_GENERATE_PREPAYMENT_INVOICE 'order.can_generate_prepayment_invoice';
  25.     public const CAN_GENERATE_BATCHES_INVOICE 'order.can_generate_batches_invoice';
  26.     public const IS_STOCK_PRODUCT 'order.is_stock_product';
  28.     private const ATTRIBUTES = [
  29.         self::CAN_RATE,
  30.         self::CAN_DO_CLAIM,
  31.         self::CAN_RESOLVE_CLAIM,
  32.         self::CAN_VIEW,
  33.         self::CAN_REORDER,
  34.         self::CAN_ADD_BATCH,
  35.         self::CAN_GENERATE_PREPAYMENT_INVOICE,
  36.         self::CAN_GENERATE_BATCHES_INVOICE,
  37.         self::IS_STOCK_PRODUCT,
  38.     ];
  40.     private PackagingTypeRepository $packagingTypeRepo;
  41.     private WorkflowHelper $workflowHelper;
  43.     public function __construct(
  44.         Security                $security,
  45.         WorkflowHelper          $workflowHelper,
  46.         PackagingTypeRepository $packagingTypeRepo
  47.     )
  48.     {
  49.         $this->packagingTypeRepo $packagingTypeRepo;
  50.         $this->security $security;
  51.         $this->workflowHelper $workflowHelper;
  52.     }
  54.     protected function supports($attribute$subject): bool
  55.     {
  56.         return in_array($attributeself::ATTRIBUTES);
  57.     }
  59.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  60.     {
  61.         switch ($attribute) {
  62.             case self::CAN_RATE:
  63.                 return $this->catRate($subject);
  64.             case self::CAN_DO_CLAIM:
  65.                 return $this->canClaim($subject);
  66.             case self::CAN_RESOLVE_CLAIM:
  67.                 return $this->canResolveClaim($subject);
  68.             case self::CAN_VIEW:
  69.                 return $this->canViewClaim($subject);
  70.             case self::CAN_REORDER:
  71.                 return $this->canReorder($subject);
  72.             case self::CAN_ADD_BATCH:
  73.                 return $this->canAddBatch($subject);
  74.             case self::CAN_GENERATE_PREPAYMENT_INVOICE:
  75.                 return $this->canGeneratePrePaymentInvoice($subject);
  76.             case self::CAN_GENERATE_BATCHES_INVOICE:
  77.                 return $this->canGenerateBatchesInvoice($subject);
  78.             case self::IS_STOCK_PRODUCT:
  79.                 return $this->isStockProduct($subject);
  80.         }
  82.         throw new \LogicException('Invalid attribute: ' $attribute);
  83.     }
  85.     private function catRate(CustomerQuotations $order): bool
  86.     {
  87.         if ($this->security->isGranted('user.is_manufacturer')) {
  88.             return false;
  89.         }
  91.         if ($order->getOrderRating()) {
  92.             return false;
  93.         }
  95.         if ($order->getStatus() == CustomerQuotations::STATUS_FINISHED) {
  96.             return true;
  97.         }
  99.         return false;
  100.     }
  102.     private function canClaim(CustomerQuotations $order): bool
  103.     {
  104.         if ($this->security->isGranted('user.is_manufacturer')) {
  105.             return false;
  106.         }
  108.         if ($order->getClaim()) {
  109.             return false;
  110.         }
  112.         if ($order->getStatus() == CustomerQuotations::STATUS_FINISHED) {
  113.             return true;
  114.         }
  116.         return false;
  117.     }
  119.     private function canResolveClaim(CustomerQuotations $order): bool
  120.     {
  122.         if ($order->getClaim() && $order->getClaim()->getStatus() != OrderClaim::STATUS_RESOLVED) {
  123.             return true;
  124.         }
  125.         return false;
  126.     }
  128.     private function canViewClaim(CustomerQuotations $order): bool
  129.     {
  130.         return true;
  131.     }
  133.     private function canReorder(CustomerQuotations $order): bool
  134.     {
  135.         if ($this->security->isGranted('user.is_manufacturer')) {
  136.             return false;
  137.         }
  139.         if ($order->getStatus() !== CustomerQuotations::STATUS_FINISHED) {
  140.             return false;
  141.         }
  143.         if (!$this->security->isGranted('ROLE_SALES_MANAGER')) {
  144.             return false;
  145.         }
  147.         return true;
  148.     }
  150.     private function canAddBatch(CustomerQuotations $quotation): bool
  151.     {
  152.         return in_array($quotation->getStatus(), [
  153.             CustomerQuotations::STATUS_PRODUCTION,
  154.             CustomerQuotations::STATUS_PRODUCED,
  155.             CustomerQuotations::STATUS_PRODUCTION_FINISHED,
  156.             CustomerQuotations::STATUS_TRANSPORT
  157.         ]);
  158.     }
  160.     private function canGeneratePrePaymentInvoice(CustomerQuotations $quotation): bool
  161.     {
  162.         if (!$this->workflowHelper->isSubjectStatusGreaterOrEqual($quotationCustomerQuotations::STATUS_MF_CONTRACT_APPROVED)) {
  163.             return false;
  164.         }
  165.         return $this->security->isGranted('ROLE_SALES_MANAGER');
  166.     }
  168.     private function canGenerateBatchesInvoice(CustomerQuotations $quotation): bool
  169.     {
  170.         if (!$this->security->isGranted('ROLE_SALES_MANAGER')) {
  171.             return false;
  172.         }
  173.         if (!count($quotation->getProductionBatches())) {
  174.             return false;
  175.         }
  176.         foreach ($quotation->getProductionBatches() as $batch) {
  177.             if (!count($batch->getInvoices())) {
  178.                 return true;
  179.             }
  180.         }
  182.         return false;
  183.     }
  185.     private function isStockProduct(CustomerQuotations $quotation): bool
  186.     {
  187.         return in_array($quotation->getPackagingType(), $this->packagingTypeRepo->getStockCodes());
  188.     }
  190. }