Symfony Profiler

<?php
declare(strict_types = 1);
namespace App\Security\Voter;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\Voter\Voter;
use Symfony\Component\Security\Core\User\UserInterface;
use App\Model\Constants\Modules;
use App\Entity\Users;
use App\Security\ACLManager;
class UsersVoter extends Voter {
private $acl;
public function __construct(ACLManager $acl) {
$this->acl = $acl;
}
protected function supports($attribute, $subject) {
//replace with your own logic
//https://symfony.com/doc/current/security/voters.html
return in_array($attribute, ['GET_USER', 'EDIT_USER', 'DELETE_USER', 'GET_USERS']) && $subject instanceof Users;
}
protected function voteOnAttribute($attribute, $subject, TokenInterface $token) {
$user = $token->getUser();
//if the user is anonymous, do not grant access
if (!$user instanceof UserInterface) {
return false;
}
// ... (check conditions and return true to grant permission) ...
switch ($attribute) {
case 'GET_USER':
case 'EDIT_USER':
//get access from database
$hasAccess = $this->acl->hasAccessToModule($user, Modules::USERS_MANAGEMENT);
if ($hasAccess) {
return true;
}
//check request vs logged user
if ($subject === $user) {
return true;
}
return false;
break;
case 'DELETE_USER':
//get access from database
$hasAccess = $this->acl->hasAccessToModule($user, Modules::USERS_MANAGEMENT);
if ($hasAccess) {
return true;
}
return false;
break;
}
throw new \Exception(sprintf('Unhandled attribute "%s"', $attribute));
}
}

src/Security/Voter/UsersVoter.php line 15