<?phpnamespace App\Security\Voter;use App\Entity\User;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;use Symfony\Component\Security\Core\Security;class UserVoter extends Voter{ const DOCTOR_MANAGE = 'DOCTOR_MANAGE'; const STUDENT_MANAGE = 'STUDENT_MANAGE'; /** * @var Security */ private $security; /** * UserVoter constructor. * @param Security $security */ public function __construct(Security $security) { $this->security = $security; } protected function supports($attribute, $subject) { return in_array($attribute, [self::DOCTOR_MANAGE, self::STUDENT_MANAGE]) && $subject instanceof User; } protected function voteOnAttribute($attribute, $subject, TokenInterface $token) { /** @var User $user */ $user = $token->getUser(); // if the user is anonymous, do not grant access if (!$user instanceof User) { return false; } // if the user is anonymous, do not grant access if (!in_array('ROLE_ADMIN', $user->getRoles()) || !in_array('ROLE_ECITY', $user->getRoles())) { return false; } // get user permissions $permissions = $user->getPermissions(); if( !is_array($permissions) ) { return false; } switch ($attribute) { case self::DOCTOR_MANAGE: if (in_array('DOCTOR_MANAGE', $permissions)) { return true; } break; case self::STUDENT_MANAGE: if (in_array('STUDENT_MANAGE', $permissions)) { return true; } } return false; }}