Home Explore Help
Register Sign In
VendorSoftware
/
SonataAdminBundle
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
SonataAdminB...
/
Security
/
Handler
/
RoleSecurityHandler.php

RoleSecurityHandler.php 2.2 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Sonata project.
    5. 

  5.  *
    6. 

  6.  * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Sonata\AdminBundle\Security\Handler;
    13. 

  13. 

  14. use Symfony\Component\Security\Core\SecurityContextInterface;
    15. 

  15. use Symfony\Component\Security\Core\Exception\AuthenticationCredentialsNotFoundException;
    16. 

  16. use Sonata\AdminBundle\Admin\AdminInterface;
    17. 

  17. 

  18. class RoleSecurityHandler implements SecurityHandlerInterface
    19. 

  19. {
    20. 

  20.     protected $securityContext;
    21. 

  21. 

  22.     protected $superAdminRoles;
    23. 

  23. 

  24.     /**
    25. 

  25.      * @param \Symfony\Component\Security\Core\SecurityContextInterface $securityContext
    26. 

  26.      * @param array                                                     $superAdminRoles
    27. 

  27.      */
    28. 

  28.     public function __construct(SecurityContextInterface $securityContext, array $superAdminRoles)
    29. 

  29.     {
    30. 

  30.         $this->securityContext = $securityContext;
    31. 

  31.         $this->superAdminRoles = $superAdminRoles;
    32. 

  32.     }
    33. 

  33. 

  34.     /**
    35. 

  35.      * {@inheritDoc}
    36. 

  36.      */
    37. 

  37.     public function isGranted(AdminInterface $admin, $attributes, $object = null)
    38. 

  38.     {
    39. 

  39.         if (!is_array($attributes)) {
    40. 

  40.             $attributes = array($attributes);
    41. 

  41.         }
    42. 

  42. 

  43.         foreach ($attributes as $pos => $attribute) {
    44. 

  44.             $attributes[$pos] = sprintf($this->getBaseRole($admin), $attribute);
    45. 

  45.         }
    46. 

  46. 

  47.         try {
    48. 

  48.             return $this->securityContext->isGranted($this->superAdminRoles) || $this->securityContext->isGranted($attributes);
    49. 

  49.         } catch (AuthenticationCredentialsNotFoundException $e) {
    50. 

  50.             return false;
    51. 

  51.         } catch (\Exception $e) {
    52. 

  52.             throw $e;
    53. 

  53.         }
    54. 

  54.     }
    55. 

  55. 

  56.     /**
    57. 

  57.      * {@inheritDoc}
    58. 

  58.      */
    59. 

  59.     public function getBaseRole(AdminInterface $admin)
    60. 

  60.     {
    61. 

  61.         return 'ROLE_' . str_replace('.', '_', strtoupper($admin->getCode())) . '_%s';
    62. 

  62.     }
    63. 

  63. 

  64.     /**
    65. 

  65.      * {@inheritDoc}
    66. 

  66.      */
    67. 

  67.     public function buildSecurityInformation(AdminInterface $admin)
    68. 

  68.     {
    69. 

  69.         return array();
    70. 

  70.     }
    71. 

  71. 

  72.     /**
    73. 

  73.      * {@inheritDoc}
    74. 

  74.      */
    75. 

  75.     public function createObjectSecurity(AdminInterface $admin, $object)
    76. 

  76.     {
    77. 

  77.     }
    78. 

  78. 

  79.     /**
    80. 

  80.      * {@inheritDoc}
    81. 

  81.      */
    82. 

  82.     public function deleteObjectSecurity(AdminInterface $admin, $object)
    83. 

  83.     {
    84. 

  84.     }
    85. 

  85. }
    86.