<?phpnamespace App\Security\Voter;use App\Entity\User;use App\Security\NoOriginalTokenException;use App\Security\OriginalTokenProvider;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;use Symfony\Component\Security\Core\User\UserInterface;class CommandOrderVoter extends Voter{ public const IMPORT = 'command_order_import'; private $originalTokenProvider; public function __construct(OriginalTokenProvider $originalTokenProvider) { $this->originalTokenProvider = $originalTokenProvider; } protected function supports($attribute, $subject) { $currentUser = $this->originalTokenProvider->getCurrentToken()->getUser(); if (false === $currentUser instanceof UserInterface) { return false; } return self::IMPORT === $attribute; } protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool { try { return $this->voteForOriginalUser($attribute); } catch (NoOriginalTokenException $exception) { return $this->voteForCurentUser($attribute, $token); } } private function voteForOriginalUser(string $attribute): bool { $originalUser = $this->originalTokenProvider->getOriginalUser(); return $this->voteForUser($attribute, $originalUser); } private function voteForCurentUser(string $attribute, TokenInterface $token): bool { $currentUSer = $token->getUser(); if (!$currentUSer instanceof User) { return false; } return $this->voteForUser($attribute, $currentUSer); } private function voteForUser(string $attribute, UserInterface $user): bool { if (self::IMPORT === $attribute && $this->canImport($user)) { return true; } return false; } protected function canImport(UserInterface $user): bool { return $user->isAnAdmin(); }}