fix role_admin route edispatcher/test

This commit is contained in:
Pierre Cadeot 2020-12-16 13:33:23 +04:00
parent f974047a61
commit 81520d0d7d
1 changed files with 22 additions and 10 deletions

View File

@ -69,7 +69,15 @@ class ApiController extends Controller
// Récupération UID
$username = \phpCAS::getUser();
$attributes = \phpCAS::getAttributes();
if(isset($attributes[$this->getParameter('user_attr_cas_username')]))
$login = $attributes[$this->getParameter('user_attr_cas_username')];
$user=$em->getRepository('CadolesCoreBundle:User')->findOneBy(["username"=>$login]);
if(!$user) {
$output["error"]="user does not exist";
return new Response(json_encode($output), 400);
}
$roles=($user?$user->getRoles():["ROLE_ANONYME"]);
if (in_array("ROLE_ADMIN",$roles)) {
return $this->render('CadolesEdispatcherBundle:Test:test.html.twig',[
'useheader' => true,
'usemenu' => false,
@ -79,6 +87,10 @@ class ApiController extends Controller
'username' => $username,
'datasource' => $datasource,
]);
} else {
$output["error"]="access not granted";
return new Response(json_encode($output), 403);
}
}