Added voter

devggbb · devggbb · commit 577cf20feaf6 · 2023-10-17T22:41:47.000+03:00
diff --git a/config/services.yaml b/config/services.yaml
@@ -9,8 +9,13 @@ services:
 
   Ggbb\SymfonyUserPermission\EventListener\RequestSubscriber:
 
+  ggbb.user_permission.mapping:
+    class: Ggbb\SymfonyUserPermission\PermissionMapping\PermissionMapping
+
   ggbb.user_permission.user_service:
     class: Ggbb\SymfonyUserPermission\Service\PermissionService
+    arguments:
+      -
     autowire: true
     autoconfigure: true
 
@@ -22,5 +27,6 @@ services:
     class: Ggbb\SymfonyUserPermission\Security\Voter\PermissionVoter
     tags: ['security.voter']
     arguments:
-      - ggbb.user_permission.user_service
+      - '@ggbb.user_permission.user_service'
     autowire: true
+    autoconfigure: true
diff --git a/src/GgbbUserPermissionBundle.php b/src/GgbbUserPermissionBundle.php
@@ -2,12 +2,11 @@
 
 namespace Ggbb\SymfonyUserPermission;
 
-use Ggbb\SymfonyUserPermission\Service\PermissionService;
+use Ggbb\SymfonyUserPermission\Permission\PermissionMappingGenerator;
 use Symfony\Component\Config\Definition\Configurator\DefinitionConfigurator;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Loader\Configurator\ContainerConfigurator;
 use Symfony\Component\HttpKernel\Bundle\AbstractBundle;
-use Symfony\Contracts\Cache\TagAwareCacheInterface;
 
 class GgbbUserPermissionBundle extends AbstractBundle
 {
@@ -24,6 +23,12 @@ public function configure(DefinitionConfigurator $definition): void
                         ->scalarNode('user_role')->end()
                     ->end()
                 ->end()
+                ->arrayNode('mapping')
+                    ->children()
+                        ->scalarNode('permissions_dir')->end()
+                        ->scalarNode('namespace')->end()
+                    ->end()
+                ->end()
             ->end();
     }
 
@@ -33,7 +38,20 @@ public function loadExtension(array $config, ContainerConfigurator $containerCon
 
         $containerConfigurator->parameters()->set(self::CONFIG_USER, $config['entity']['user']);
         $containerConfigurator->parameters()->set(self::CONFIG_USER_ROLE, $config['entity']['user_role']);
-        $containerBuilder->setDefinitions();
+
+
+        $definition = $containerBuilder->getDefinition('ggbb.user_permission.user_service');
+        $definition->setArgument('$permissionMapping', PermissionMappingGenerator::generating($config['mapping']['namespace'], $config['mapping']['permissions_dir']));
+
+//        $resv = $containerConfigurator->services()->get('ggbb.user_permission.user_service')
+//            ->arg(0, '111111111111');
+        ///dd($resv);
+//            ->get('ggbb.user_permission.user_service')
+//            ->set()
+//            ->arg(0, '1111')
+//            ->arg(1, '2222');
+        ;
+      //  $containerBuilder->setDefinitions();
        // dump('Test');
 //        /** @var PermissionService $res */
 //        $res = $containerBuilder->get('ggbb.user_permission.user_service');
diff --git a/src/Permission/PermissionMappingGenerator.php b/src/Permission/PermissionMappingGenerator.php
@@ -0,0 +1,38 @@
+<?php
+
+namespace Ggbb\SymfonyUserPermission\Permission;
+
+final class PermissionMappingGenerator
+{
+    public static function generating(string $namespace, string $permissionsDirPath, ?string $middleDirPath = null): array
+    {
+        $files = [];
+        /** @var \SplFileInfo $file */
+        foreach (new \DirectoryIterator($permissionsDirPath) as $file) {
+            //   dump($file);
+            if ($file->isFile()) {
+                $typeFile = substr($file->getFilename(), -4);
+                if ($typeFile !== '.php') {
+                    continue;
+                }
+
+                $middleDirNamespace = '';
+                if ($middleDirPath) {
+                    $middleDirNamespace = str_replace('/', '\\', $middleDirPath);
+                }
+
+                $fileName = substr($file->getFilename(), 0, -4);
+                $files[$fileName] = "{$namespace}{$middleDirNamespace}\\{$fileName}";
+            }
+            if ($file->isDir()) {
+                if ($file->getRealPath() === $permissionsDirPath || in_array($file->getFilename(), ['..', '.'])) {
+                    continue;
+                }
+
+                $middleDirName = str_replace($permissionsDirPath, '', $file->getRealPath());
+                $files = array_merge($files, self::generating($namespace, $file->getRealPath(), "{$middleDirPath}{$middleDirName}"));
+            }
+        }
+        return $files;
+    }
+}
diff --git a/src/Security/Voter/PermissionVoter.php b/src/Security/Voter/PermissionVoter.php
@@ -2,50 +2,39 @@
 
 namespace Ggbb\SymfonyUserPermission\Security\Voter;
 
+use Ggbb\SymfonyUserPermission\Entity\Interface\UserRoleFieldInterface;
 use Ggbb\SymfonyUserPermission\Service\PermissionService;
+use Symfony\Bundle\SecurityBundle\Security;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
-use Symfony\Contracts\Cache\TagAwareCacheInterface;
 
 class PermissionVoter extends Voter
 {
     public function __construct(
+        private readonly PermissionService $permissionService,
+        private readonly Security $security,
     )
     {
     }
     protected function supports($attribute, $subject): bool
     {
+        if (!$this->permissionService->hisPermission($attribute) || !$this->security->getUser()) {
+            return false;
+        }
 
-
-        dump('1 Test - '. $attribute);
-        return false;
-
-        dump('1');
-            return  true;
-        dump('Start');
-
-
-        //$res = $this->permissionService->isPermission($attribute);
-
-        dump($res);
-
-
-
-
-
-
-
-
-
-        dd('End');
-
-        //    $pieces = explode("::", $attribute);
-
-
+        return true;
     }
 
     protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
-        return false;
+        /** @var UserRoleFieldInterface $user */
+        $user = $this->security->getUser();
+        $userRole = $user->getUserRole();
+
+        if (!in_array($attribute, $userRole->getPermissions())) {
+            return false;
+        }
+
+        return true;
     }
 }
diff --git a/src/Service/PermissionService.php b/src/Service/PermissionService.php
@@ -2,20 +2,45 @@
 
 namespace Ggbb\SymfonyUserPermission\Service;
 
+
 class PermissionService
 {
-    public function isPermission(string $attribute): bool {
-        if (!$attribute) {
+    public function __construct(
+        private readonly array $permissionMapping,
+    )
+    {
+    }
+
+    public function hisPermission(string $attribute): bool
+    {
+        if (!$attribute || count($this->getExplodeNamePermission($attribute)) === 0) {
             return false;
         }
 
-        $attributeParts = explode("::", $attribute);
-        if (count($attributeParts) !== 2) {
+        return true;
+    }
+
+    public function isPermission(string $attribute): bool
+    {
+        if (!$this->hisPermission($attribute)) {
             return false;
         }
 
-
+        $namePermission = $this->getExplodeNamePermission($attribute);
+        if (!isset($this->permissionMapping[$namePermission[0]])) {
+            return false;
+        }
 
         return true;
     }
+
+    private function getExplodeNamePermission($attribute): array
+    {
+        $attributeParts = explode("::", $attribute);
+        if (count($attributeParts) !== 2) {
+            return [];
+        }
+
+        return $attributeParts;
+    }
 }
