src/CoreBundle/DataProvider/Extension/TrackEAttemptQualifyExtension.php
<?php
/* For licensing terms, see /license.txt */
declare(strict_types=1);
namespace Chamilo\CoreBundle\DataProvider\Extension;
use ApiPlatform\Doctrine\Orm\Extension\QueryCollectionExtensionInterface;
use ApiPlatform\Doctrine\Orm\Util\QueryNameGeneratorInterface;
use ApiPlatform\Metadata\Operation;
use Chamilo\CoreBundle\Entity\TrackEAttemptQualify;
use Chamilo\CoreBundle\Entity\User;
use Doctrine\ORM\QueryBuilder;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\Security\Core\User\UserInterface;
readonly class TrackEAttemptQualifyExtension implements QueryCollectionExtensionInterface
{
public function __construct(
private Security $security,
) {}
public function applyToCollection(
QueryBuilder $queryBuilder,
QueryNameGeneratorInterface $queryNameGenerator,
string $resourceClass,
?Operation $operation = null,
array $context = []
): void {
if (TrackEAttemptQualify::class !== $resourceClass) {
return;
}
if ($this->security->isGranted('ROLE_ADMIN')) {
return;
}
$user = $this->security->getUser();
if (!$user instanceof UserInterface) {
return;
}
\assert($user instanceof User);
$alias = $queryBuilder->getRootAliases()[0];
// @todo Check permissions with other roles of the current user
if ($user->isStudent()) {
$queryBuilder
->innerJoin("$alias.trackExercise", 'tee')
->andWhere('tee.user = :user')
->setParameter('user', $user->getId())
;
}
}
}