Sulu\Component\Security\Authorization\SecurityContextVoter::vote PHP Method

SecurityContextVoter Class Documentation Usage Examples Of Sulu\Component\Security\Authorization\SecurityContextVoter::vote ファイルを表示 Open project: sulu/sulu

vote() public method

public vote ( Symfony\Component\Security\Core\Authentication\Token\TokenInterface $token, $object, array $attributes )
$token	Symfony\Component\Security\Core\Authentication\Token\TokenInterface
$attributes	array

    public function vote(TokenInterface $token, $object, array $attributes)
    {
        /** @var User $user */
        $user = $token->getUser();
        if (!is_object($object) || !$this->supportsClass(get_class($object))) {
            return VoterInterface::ACCESS_ABSTAIN;
        }
        $userPermissions = $this->accessControlManager->getUserPermissions($object, $user);
        // only if all attributes are granted the access is granted
        foreach ($attributes as $attribute) {
            if (isset($userPermissions[$attribute]) && !$userPermissions[$attribute]) {
                return VoterInterface::ACCESS_DENIED;
            }
        }
        return VoterInterface::ACCESS_GRANTED;
    }

Usage Example

コード例 #1

ファイルを表示

ファイル: SecurityContextVoterTest.php プロジェクト: Silwereth/sulu

 public function testNegativeVoteWithMultipleAttributes()
 {
     $securityCondition = new SecurityCondition('sulu.security.roles', null);
     $this->accessControlManager->getUserPermissions($securityCondition, $this->user)->willReturn(['view' => true, 'add' => true, 'security' => false]);
     $access = $this->voter->vote($this->token->reveal(), $securityCondition, ['view', 'security']);
     $this->assertSame(VoterInterface::ACCESS_DENIED, $access);
 }

All Usage Examples Of Sulu\Component\Security\Authorization\SecurityContextVoter::vote

SecurityContextVoter

__construct

supportsAttribute

supportsClass

vote