<?phpnamespace App\Security\Authorization\Voter;use App\Entity\BuyersGroup;use App\Entity\Sale;use App\Entity\User;use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;use Symfony\Component\Security\Core\Authorization\Voter\Voter;class ViewSaleVoter extends Voter{ public const VIEW = 'view'; public function __construct(private readonly AccessDecisionManagerInterface $decisionManager) { } protected function supports($attribute, $sale) { if (self::VIEW !== $attribute) { return false; } if (!$sale instanceof Sale) { return false; } return true; } protected function voteOnAttribute($attribute, $sale, TokenInterface $token) { $user = $token->getUser(); if (in_array(BuyersGroup::PUBLIC_GROUP, $sale->getBuyersGroups()->toArray())) { return true; } if ($this->decisionManager->decide($token, ['ROLE_ACCESS'])) { return true; } if ($user instanceof User) { return [] !== array_intersect($user->getBuyersGroups()->toArray(), $sale->getBuyersGroups()->toArray()); } return false; }}