vendor/symfony/security-bundle/DependencyInjection/Compiler/AddSecurityVotersPass.php line 51

  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Bundle\SecurityBundle\DependencyInjection\Compiler;
  14. use Symfony\Component\DependencyInjection\Argument\IteratorArgument;
  15. use Symfony\Component\DependencyInjection\Compiler\CompilerPassInterface;
  16. use Symfony\Component\DependencyInjection\Compiler\PriorityTaggedServiceTrait;
  17. use Symfony\Component\DependencyInjection\ContainerBuilder;
  18. use Symfony\Component\DependencyInjection\Exception\LogicException;
  19. use Symfony\Component\DependencyInjection\Reference;
  20. use Symfony\Component\Security\Core\Authorization\Voter\TraceableVoter;
  21. use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  23. /**
  24.  * Adds all configured security voters to the access decision manager.
  25.  *
  26.  * @author Johannes M. Schmitt <schmittjoh@gmail.com>
  27.  */
  28. class AddSecurityVotersPass implements CompilerPassInterface
  29. {
  30.     use PriorityTaggedServiceTrait;
  32.     public function process(ContainerBuilder $container)
  33.     {
  34.         if (!$container->hasDefinition('security.access.decision_manager')) {
  35.             return;
  36.         }
  38.         $voters $this->findAndSortTaggedServices('security.voter'$container);
  39.         if (!$voters) {
  40.             throw new LogicException('No security voters found. You need to tag at least one with "security.voter".');
  41.         }
  43.         $debug $container->getParameter('kernel.debug');
  44.         $voterServices = [];
  45.         foreach ($voters as $voter) {
  46.             $voterServiceId = (string) $voter;
  47.             $definition $container->getDefinition($voterServiceId);
  49.             $class $container->getParameterBag()->resolveValue($definition->getClass());
  51.             if (!is_a($classVoterInterface::class, true)) {
  52.                 throw new LogicException(sprintf('"%s" must implement the "%s" when used as a voter.'$classVoterInterface::class));
  53.             }
  55.             if ($debug) {
  56.                 $voterServices[] = new Reference($debugVoterServiceId 'debug.security.voter.'.$voterServiceId);
  58.                 $container
  59.                     ->register($debugVoterServiceIdTraceableVoter::class)
  60.                     ->addArgument($voter)
  61.                     ->addArgument(new Reference('event_dispatcher'));
  62.             } else {
  63.                 $voterServices[] = $voter;
  64.             }
  65.         }
  67.         $container->getDefinition('security.access.decision_manager')
  68.             ->replaceArgument(0, new IteratorArgument($voterServices));
  69.     }
  70. }