tristan
76f1363457
All checks were successful
Auto Tag Develop / tag (push) Successful in 6s
| Numéro du ticket | Titre du ticket | |------------------|-----------------| | #321 | Gestion des rôles dans l'application | ## Description de la PR [#321] Gestion des rôles dans l'application ## Modification du .env ## Check list - [x] Pas de régression - [ ] TU/TI/TF rédigée - [x] TU/TI/TF OK - [ ] CHANGELOG modifié Reviewed-on: #2 Co-authored-by: tristan <tristan@yuno.malio.fr> Co-committed-by: tristan <tristan@yuno.malio.fr>
208 lines
5.2 KiB
PHP
208 lines
5.2 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Entity;
|
|
|
|
use ApiPlatform\Metadata\ApiProperty;
|
|
use ApiPlatform\Metadata\ApiResource;
|
|
use ApiPlatform\Metadata\Get;
|
|
use ApiPlatform\Metadata\GetCollection;
|
|
use ApiPlatform\Metadata\Patch;
|
|
use ApiPlatform\Metadata\Post;
|
|
use App\State\CurrentUserProvider;
|
|
use App\State\UserPasswordHasherProcessor;
|
|
use Doctrine\Common\Collections\ArrayCollection;
|
|
use Doctrine\Common\Collections\Collection;
|
|
use Doctrine\ORM\Mapping as ORM;
|
|
use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
|
|
use Symfony\Component\Security\Core\User\UserInterface;
|
|
use Symfony\Component\Serializer\Attribute\Groups;
|
|
|
|
#[ApiResource(
|
|
operations: [
|
|
new Get(
|
|
uriTemplate: '/me',
|
|
normalizationContext: ['groups' => ['user:read']],
|
|
security: "is_granted('ROLE_USER')",
|
|
provider: CurrentUserProvider::class
|
|
),
|
|
new GetCollection(
|
|
normalizationContext: ['groups' => ['user:read', 'employee:read', 'site:read']],
|
|
security: "is_granted('ROLE_ADMIN')"
|
|
),
|
|
new Get(
|
|
uriTemplate: '/users/{id}',
|
|
normalizationContext: ['groups' => ['user:read', 'employee:read', 'site:read']],
|
|
security: "is_granted('ROLE_ADMIN')"
|
|
),
|
|
new Post(
|
|
denormalizationContext: ['groups' => ['user:write']],
|
|
normalizationContext: ['groups' => ['user:read']],
|
|
security: "is_granted('ROLE_ADMIN')",
|
|
processor: UserPasswordHasherProcessor::class
|
|
),
|
|
new Patch(
|
|
uriTemplate: '/users/{id}',
|
|
paginationEnabled: false,
|
|
normalizationContext: ['groups' => ['user:read']],
|
|
denormalizationContext: ['groups' => ['user:write']],
|
|
security: "is_granted('ROLE_ADMIN')",
|
|
processor: UserPasswordHasherProcessor::class
|
|
),
|
|
]
|
|
)]
|
|
#[ORM\Entity]
|
|
#[ORM\Table(name: 'users')]
|
|
#[ORM\UniqueConstraint(name: 'uniq_users_username', fields: ['username'])]
|
|
class User implements UserInterface, PasswordAuthenticatedUserInterface
|
|
{
|
|
#[ORM\Id]
|
|
#[ORM\GeneratedValue]
|
|
#[ORM\Column(type: 'integer')]
|
|
#[Groups(['user:read'])]
|
|
private ?int $id = null;
|
|
|
|
#[ORM\Column(type: 'string', length: 180)]
|
|
#[Groups(['user:read', 'user:write'])]
|
|
private string $username = '';
|
|
|
|
#[ORM\Column(type: 'json')]
|
|
#[Groups(['user:write'])]
|
|
private array $roles = [];
|
|
|
|
#[ORM\Column(type: 'string')]
|
|
private string $password = '';
|
|
|
|
#[Groups(['user:write'])]
|
|
private string $plainPassword = '';
|
|
|
|
#[ApiProperty(readableLink: true)]
|
|
#[ORM\OneToOne(targetEntity: Employee::class)]
|
|
#[ORM\JoinColumn(nullable: true, unique: true)]
|
|
#[Groups(['user:read', 'user:write'])]
|
|
private ?Employee $employee = null;
|
|
|
|
/**
|
|
* @var Collection<int, UserSiteRole>
|
|
*/
|
|
#[ORM\OneToMany(mappedBy: 'user', targetEntity: UserSiteRole::class, orphanRemoval: true)]
|
|
private Collection $siteRoles;
|
|
|
|
public function __construct()
|
|
{
|
|
$this->siteRoles = new ArrayCollection();
|
|
}
|
|
|
|
public function getId(): ?int
|
|
{
|
|
return $this->id;
|
|
}
|
|
|
|
public function getUsername(): string
|
|
{
|
|
return $this->username;
|
|
}
|
|
|
|
public function setUsername(string $username): self
|
|
{
|
|
$this->username = $username;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getUserIdentifier(): string
|
|
{
|
|
return $this->username;
|
|
}
|
|
|
|
/**
|
|
* @return list<string>
|
|
*/
|
|
#[Groups(['user:read'])]
|
|
public function getRoles(): array
|
|
{
|
|
$roles = $this->roles;
|
|
$roles[] = 'ROLE_USER';
|
|
|
|
return array_values(array_unique($roles));
|
|
}
|
|
|
|
/**
|
|
* @param list<string> $roles
|
|
*/
|
|
public function setRoles(array $roles): self
|
|
{
|
|
$this->roles = $roles;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getPassword(): string
|
|
{
|
|
return $this->password;
|
|
}
|
|
|
|
public function setPassword(string $password): self
|
|
{
|
|
$this->password = $password;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getPlainPassword(): string
|
|
{
|
|
return $this->plainPassword;
|
|
}
|
|
|
|
public function setPlainPassword(string $plainPassword): self
|
|
{
|
|
$this->plainPassword = $plainPassword;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getEmployee(): ?Employee
|
|
{
|
|
return $this->employee;
|
|
}
|
|
|
|
public function setEmployee(?Employee $employee): self
|
|
{
|
|
$this->employee = $employee;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
* @return Collection<int, UserSiteRole>
|
|
*/
|
|
public function getSiteRoles(): Collection
|
|
{
|
|
return $this->siteRoles;
|
|
}
|
|
|
|
public function addSiteRole(UserSiteRole $siteRole): self
|
|
{
|
|
if (!$this->siteRoles->contains($siteRole)) {
|
|
$this->siteRoles->add($siteRole);
|
|
$siteRole->setUser($this);
|
|
}
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function removeSiteRole(UserSiteRole $siteRole): self
|
|
{
|
|
if ($this->siteRoles->removeElement($siteRole)) {
|
|
if ($siteRole->getUser() === $this) {
|
|
$siteRole->setUser(null);
|
|
}
|
|
}
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function eraseCredentials(): void {}
|
|
}
|