src/Security/Voters/QuotationVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voters;
  5. use App\Entity\CustomerQuotations;
  6. use App\Entity\PriceInquiry;
  7. use App\Service\WebPop\WebShopService;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. use Symfony\Component\Security\Core\Security;
  12. class QuotationVoter extends Voter
  13. {
  14.     private Security $security;
  15.     public const CAN_OPEN_PORPOSAL 'quotation.proposal.can_open';
  17.     public const CAN_OPEN_MF_OFFERS 'quotation.mf_offers.can_open';
  18.     public const CAN_CHANGE_COMMISSION 'quotation.commission.can_change';
  19.     public const CAN_DELETE_QUOTATION 'quotation.can_delete';
  20.     public const CAN_OPEN_QUOTATION 'quotation.can_open';
  21.     public const CAN_CREATE_INQUIRY 'quotation.inquiry.can_create';
  22.     public const CAN_GENERATE_INQUIRIES 'quotation.inquiry.can_generate';
  23.     public const IS_CUSTOMER_QUOTATION 'quotation.is_customer';
  24.     public const CAN_BE_UPDATED_IN_CALCULATOR 'quotation.can_be_updated_in_calculator';
  25.     public const CAN_BE_UPDATED_IN_WEB_POP 'quotation.can_be_updated_in_web_pop';
  26.     public const CAN_CHANGE_MANAGER 'quotation.can_change_manager';
  27.     public const CAN_ROLLBACK 'quotation.can_rollback';
  28.     public const CAN_CREATE_CUSTOMER_FROM_SHOP_INVOICE 'quotation.customer.create_from_shop_invoice';
  30.     private const ATTRIBUTES = [
  31.         self::CAN_OPEN_PORPOSAL,
  32.         self::CAN_OPEN_MF_OFFERS,
  33.         self::CAN_DELETE_QUOTATION,
  34.         self::CAN_CHANGE_COMMISSION,
  35.         self::CAN_CREATE_INQUIRY,
  36.         self::CAN_OPEN_QUOTATION,
  37.         self::CAN_GENERATE_INQUIRIES,
  38.         self::IS_CUSTOMER_QUOTATION,
  39.         self::CAN_BE_UPDATED_IN_CALCULATOR,
  40.         self::CAN_BE_UPDATED_IN_WEB_POP,
  41.         self::CAN_CHANGE_MANAGER,
  42.         self::CAN_ROLLBACK,
  43.         self::CAN_CREATE_CUSTOMER_FROM_SHOP_INVOICE
  44.     ];
  46.     private WebShopService $shopService;
  48.     public function __construct(
  49.         Security $security,
  50.         WebShopService $shopService
  51.     )
  52.     {
  53.         $this->security $security;
  54.         $this->shopService $shopService;
  55.     }
  57.     protected function supports($attribute$subject): bool
  58.     {
  59.         return in_array($attributeself::ATTRIBUTES);
  60.     }
  62.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  63.     {
  64.         switch ($attribute) {
  65.             case self::CAN_OPEN_PORPOSAL:
  66.                 return $this->canOpenProposal($subject);
  67.             case self::CAN_OPEN_MF_OFFERS:
  68.                 return $this->canOpenMfOffers($subject);
  69.             case self::CAN_DELETE_QUOTATION:
  70.                 return $this->canDeleteQuotation($subject);
  71.             case self::CAN_CHANGE_COMMISSION:
  72.                 return $this->canChangeCommission($subject);
  73.             case self::CAN_CREATE_INQUIRY:
  74.                 return $this->canCreateInquiry($subject);
  75.             case self::CAN_OPEN_QUOTATION:
  76.                 return $this->canOpenQuotation($subject);
  77.             case self::CAN_GENERATE_INQUIRIES:
  78.                 return $this->canGenerateInquiries($subject);
  79.             case self::IS_CUSTOMER_QUOTATION:
  80.                 return $this->isCustomerQuotation($subject);
  81.             case self::CAN_BE_UPDATED_IN_CALCULATOR:
  82.             case self::CAN_BE_UPDATED_IN_WEB_POP:
  83.                 return $this->canBeUpdatedInCalculator($subject);
  84.             case self::CAN_CHANGE_MANAGER:
  85.                 return $this->canChangeManager($subject);
  86.             case self::CAN_ROLLBACK:
  87.                 return $this->canRollback($subject);
  88.             case self::CAN_CREATE_CUSTOMER_FROM_SHOP_INVOICE:
  89.                 return $this->canCreateCustomerFromShopInvoice($subject);
  90.         }
  92.         throw new \LogicException('Invalid attribute: ' $attribute);
  93.     }
  95.     private function isCustomerQuotation(CustomerQuotations $quotation): bool
  96.     {
  97.         if ($quotation->getCreatedBy() && $quotation->getCreatedBy()->getCustomer()) {
  98.             return true;
  99.         }
  101.         return false;
  102.     }
  104.     private function canOpenProposal(CustomerQuotations $quotation): bool
  105.     {
  106.         foreach ($quotation->getPriceInquiries() as $inquiry) {
  107.             if (!$inquiry->getOfferVerifiedSM()) {
  108.                 if (!$this->security->isGranted('ROLE_SALES_MANAGER')) {
  109.                     continue;
  110.                 }
  111.             }
  113.             if (in_array($inquiry->getStatus(), [PriceInquiry::STATUS_OFFERPriceInquiry::STATUS_DECLINEDPriceInquiry::STATUS_ACCEPTEDPriceInquiry::STATUS_HOLD])) {
  114.                 return true;
  115.             }
  116.         }
  118.         return false;
  119.     }
  121.     private function canOpenQuotation(CustomerQuotations $quotation): bool
  122.     {
  123.         if ($this->security->isGranted('ROLE_CAN_SEE_ALL_QUOTATIONS')) {
  124.             return true;
  125.         }
  127.         if ($this->security->getUser() !== null && $quotation->getManager() == $this->security->getUser()) {
  128.             return true;
  129.         }
  131.         if ($this->security->isGranted('ROLE_CAN_CREATE_INQUIRIES')
  132.             && !in_array($quotation->getStatus(), [CustomerQuotations::STATUS_DRAFT,
  133.                 CustomerQuotations::STATUS_NEW,
  134.                 CustomerQuotations::STATUS_PROCESSING,
  135.                 CustomerQuotations::STATUS_FINISHED,
  136.                 CustomerQuotations::STATUS_REJECTED,
  137.                 CustomerQuotations::STATUS_DELETED])) {
  138.             return true;
  140.         }
  142.         if ($quotation->getManager() === null) {
  143.             return true;
  144.         }
  146.         return false;
  147.     }
  149.     private function canChangeCommission(CustomerQuotations $quotation): bool
  150.     {
  151.         if (!$this->security->isGranted('ROLE_CAN_CHANGE_OFFER_COMMISSION')) {
  152.             return false;
  153.         }
  155.         if (!in_array($quotation->getStatus(), [CustomerQuotations::STATUS_READYCustomerQuotations::STATUS_INQUIRIES_SENTCustomerQuotations::STATUS_OFFERS_RECEIVEDCustomerQuotations::STATUS_OFFERS_PARTIALLY_RECEIVED])) {
  156.             return false;
  157.         }
  159.         return true;
  160.     }
  162.     private function canDeleteQuotation(CustomerQuotations $quotation): bool
  163.     {
  164.         if (!$this->security->isGranted('ROLE_QUOTATION_CAN_DELETE')) {
  165.             return false;
  166.         }
  168.         if (!in_array($quotation->getStatus(), [CustomerQuotations::STATUS_DRAFTCustomerQuotations::STATUS_NEW])) {
  169.             return false;
  170.         }
  172.         return true;
  173.     }
  175.     private function canCreateInquiry(CustomerQuotations $quotation): bool
  176.     {
  177.         if (!$this->security->isGranted('ROLE_CAN_CREATE_INQUIRIES')) {
  178.             return false;
  179.         }
  181.         if (!in_array($quotation->getStatus(), [CustomerQuotations::STATUS_READYCustomerQuotations::STATUS_INQUIRIES_SENTCustomerQuotations::STATUS_OFFERS_RECEIVEDCustomerQuotations::STATUS_OFFERS_PARTIALLY_RECEIVED])) {
  182.             return false;
  183.         }
  185.         return true;
  186.     }
  188.     private function canGenerateInquiries(CustomerQuotations $quotation): bool
  189.     {
  190.         if ($quotation->getManager() == $this->security->getUser() && in_array($quotation->getStatus(), [CustomerQuotations::STATUS_NEWCustomerQuotations::STATUS_READY])) {
  191.             return true;
  192.         }
  194.         return false;
  195.     }
  197.     private function canBeUpdatedInCalculator(CustomerQuotations $quotation): bool
  198.     {
  199.         if ($quotation->getStatus() === CustomerQuotations::STATUS_DRAFT) {
  200.             return true;
  201.         }
  203.         return false;
  204.     }
  206.     private function canChangeManager(CustomerQuotations $quotation): bool
  207.     {
  208.         if (!$this->security->isGranted('ROLE_QUOTATION_CAN_CHANGE_MANAGER')) {
  209.             return false;
  210.         }
  212. //        if ($quotation->getManager()) {
  213. //            return true;
  214. //        }
  216.         return true;
  217.     }
  219.     private function canOpenMfOffers(CustomerQuotations $quotation): bool
  220.     {
  221.         if (!$this->security->isGranted('ROLE_MANUFACTURING_MANAGER')) {
  222.             return false;
  223.         }
  225.         if (count($quotation->getPriceInquiries()) > 0) {
  226.             return true;
  227.         }
  229.         return false;
  230.     }
  232.     private function canRollback(CustomerQuotations $quotation): bool
  233.     {
  234.         if(!$this->security->isGranted('ROLE_CAN_ROLLBACK_QUOTATION')) {
  235.             return false;
  236.         }
  238.         if (in_array($quotation->getStatus(), [
  239.             CustomerQuotations::STATUS_DRAFT,
  240.             CustomerQuotations::STATUS_NEW,
  241. //                CustomerQuotations::STATUS_REJECTED,
  242.             CustomerQuotations::STATUS_DELETED,
  243.             CustomerQuotations::STATUS_HOLD
  244.         ])) {
  245.             return false;
  246.         }
  248.         return true;
  249.     }
  251.     private function canCreateCustomerFromShopInvoice(CustomerQuotations $quotation): bool
  252.     {
  253.         if (!$this->shopService->findWebShopInvoice($quotation)) {
  254.             return false;
  255.         }
  256.         if ($quotation->getCustomer()) {
  257.             return false;
  258.         }
  259.         return true;
  260.     }
  261. }