src/Security/Voters/ShopVoter.php line 12

Open in your IDE?
  1. <?php
  3. namespace App\Security\Voters;
  5. use App\Entity\CustomerQuotations;
  6. use App\Service\Constants\InvoiceStatus;
  7. use App\Service\WorkflowHelper;
  8. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  9. use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  10. use Symfony\Component\Security\Core\Security;
  12. class ShopVoter extends Voter
  13. {
  14.     public const ORDER_IS_PAID   'order.is_paid';
  15.     public const BEFORE_PAYMENT  'order.before_payment';
  16.     public const AFTER_PAYMENT   'order.after_payment';
  17.     public const ORDER_CAN_CUSTOMER_CONNECT 'order.can_customer_connect';
  18.     public const ORDER_CAN_SAVE_FOR_LATER_SECURED 'order.can_save_for_later_secured';
  19.     public const ORDER_NEED_INVOICE_PAYMENT_STAGE 'order.need_invoice_payment_stage';
  21.     private const ATTRIBUTES = [
  22.         self::ORDER_IS_PAID,
  23.         self::BEFORE_PAYMENT,
  24.         self::AFTER_PAYMENT,
  25.         self::ORDER_CAN_CUSTOMER_CONNECT,
  26.         self::ORDER_CAN_SAVE_FOR_LATER_SECURED,
  27.         self::ORDER_NEED_INVOICE_PAYMENT_STAGE,
  28.     ];
  30.     private Security $security;
  31.     private WorkflowHelper $workflowHelper;
  33.     public function __construct(
  34.         Security $security,
  35.         WorkflowHelper $workflowHelper
  36.     )
  37.     {
  38.         $this->security $security;
  39.         $this->workflowHelper $workflowHelper;
  40.     }
  42.     protected function supports($attribute$subject): bool
  43.     {
  44.         return in_array($attributeself::ATTRIBUTES);
  45.     }
  47.     protected function voteOnAttribute($attribute$subjectTokenInterface $token): bool
  48.     {
  49.         switch ($attribute) {
  50.             case self::ORDER_IS_PAID:
  51.             case self::AFTER_PAYMENT:
  52.                 return $this->orderIsPaid($subject);
  53.             case self::BEFORE_PAYMENT:
  54.                 return !$this->orderIsPaid($subject);
  55.             case self::ORDER_CAN_CUSTOMER_CONNECT:
  56.                 return $this->orderCanCustomerConnect($subject);
  57.             case self::ORDER_CAN_SAVE_FOR_LATER_SECURED:
  58.                 return $this->orderCanSaveForLaterSecured($subject);
  59.             case self::ORDER_NEED_INVOICE_PAYMENT_STAGE:
  60.                 return $this->needInvoicePaymentStage($subject);
  61.         }
  63.         throw new \LogicException('Invalid attribute: ' $attribute);
  64.     }
  66.     private function orderIsPaid(CustomerQuotations $order): bool
  67.     {
  68.         if (!$this->workflowHelper->isSubjectStatusGreaterOrEqual($orderCustomerQuotations::STATUS_ACCEPTED)) {
  69.             return false;
  70.         }
  71.         if (!$order->getIsWebShopRelated()) {
  72.             return false;
  73.         }
  74.         foreach ($order->getInvoices() as $regInvoice) {
  75.             if ($regInvoice->getIsWebShopRelated()) {
  76.                 if ($regInvoice->getStatus() === InvoiceStatus::INVOICE_STATUS_PAID_FULLY) {
  77.                     return true;
  78.                 }
  79.             }
  80.         }
  81.         return false;
  82.     }
  84.     private function orderCanCustomerConnect(CustomerQuotations $order): bool
  85.     {
  86.         if ($order->getCustomer()) {
  87.             return false;
  88.         }
  89.         if (!in_array($order->getStatus(), [
  90.             CustomerQuotations::STATUS_ACCEPTED,
  91.             CustomerQuotations::STATUS_WAITING_PAYMENT,
  92.             CustomerQuotations::STATUS_DRAFT
  93.         ])) {
  94.             return false;
  95.         }
  96.         if (!$order->getIsWebShopRelated()) {
  97.             return false;
  98.         }
  99.         return true;
  100.     }
  102.     private function orderCanSaveForLaterSecured(CustomerQuotations $order): bool
  103.     {
  104.         if (!$order->getIsWebShopRelated()) {
  105.             return false;
  106.         }
  108.         if (!in_array($order->getStatus(), [
  109.             CustomerQuotations::STATUS_DRAFT
  110.         ])) {
  111.             return false;
  112.         }
  114.         if ($order->getCustomer()) {
  115.             return $order->getCustomer() === $this->security->getUser()->getCustomer();
  116.         }
  118.         return true;
  119.     }
  121.     private function needInvoicePaymentStage(CustomerQuotations $order): bool
  122.     {
  123.         foreach ($order->getInvoices() as $regInvoice) {
  124.             if ($regInvoice->getIsWebShopRelated()) {
  125.                 return false;
  126.             }
  127.         }
  128.         return true;
  129.     }
  131. }