/
InheritedRolesController.php
91 lines (87 loc) · 2.6 KB
/
InheritedRolesController.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
<?php
declare(strict_types = 1);
/**
* /src/Controller/v1/Role/InheritedRolesController.php
*
* @author TLe, Tarmo Leppänen <tarmo.leppanen@pinja.com>
*/
namespace App\Controller\v1\Role;
use App\Entity\Role;
use App\Resource\RoleResource;
use App\Security\RolesService;
use OpenApi\Annotations as OA;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
use Symfony\Component\HttpFoundation\JsonResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\Routing\Annotation\Route;
use Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter;
/**
* Class InheritedRolesController
*
* @OA\Tag(name="Role Management")
*
* @package App\Controller\v1\Role
* @author TLe, Tarmo Leppänen <tarmo.leppanen@pinja.com>
*/
class InheritedRolesController
{
public function __construct(
private RolesService $rolesService,
) {
}
/**
* Endpoint action to return all inherited roles as an array for specified
* Role.
*
* @OA\Parameter(
* name="Authorization",
* in="header",
* required=true,
* description="Authorization header",
* @OA\Schema(
* type="string",
* default="Bearer _your_jwt_here_",
* ),
* )
* @OA\Response(
* response=200,
* description="Inherited roles",
* @OA\Schema(
* type="array",
* @OA\Items(
* type="string",
* ),
* ),
* )
* @OA\Response(
* response=401,
* description="Invalid token",
* @OA\Schema(
* type="object",
* example={
* "Token not found": "{code: 401, message: 'JWT Token not found'}",
* "Expired token": "{code: 401, message: 'Expired JWT Token'}",
* },
* @OA\Property(property="code", type="integer", description="Error code"),
* @OA\Property(property="message", type="string", description="Error description"),
* ),
* )
*/
#[Route(
path: '/v1/role/{role}/inherited',
requirements: [
'role' => '^ROLE_\w+$',
],
methods: [Request::METHOD_GET],
)]
#[IsGranted(AuthenticatedVoter::IS_AUTHENTICATED_FULLY)]
#[ParamConverter(
data: 'role',
class: RoleResource::class,
)]
public function __invoke(Role $role): JsonResponse
{
return new JsonResponse($this->rolesService->getInheritedRoles([$role->getId()]));
}
}