src/Service/Access.php line 156

1. <?php
3. namespace App\Service;
5. use App\Entity\Advertiser;
6. use App\Entity\Agency;
7. use App\Entity\Operation;
8. use App\Entity\OperationFamily;
9. use App\Entity\OperationOrder;
10. use App\Entity\OperationOrderComment;
11. use App\Entity\OperationOrderQuotaVersion;
12. use App\Entity\OperationOrderStepVersion;
13. use App\Entity\PolymorphicOperationOrder\OperationOrderAnimation;
14. use App\Entity\PolymorphicOperationOrder\OperationOrderFurniture;
15. use App\Entity\PolymorphicOperationOrder\OperationOrderRefrigeratorBin;
16. use App\Entity\Quota;
17. use App\Entity\Role;
18. use App\Entity\User;
19. use App\Rights\CustomSecurityLoader;
20. use App\Service\User as UserService;
21. use Doctrine\ORM\EntityManagerInterface;
22. use Symfony\Component\HttpFoundation\RedirectResponse;
23. use Symfony\Component\HttpFoundation\Request;
24. use Symfony\Component\HttpFoundation\RequestStack;
25. use Symfony\Component\HttpFoundation\Response;
26. use Symfony\Component\HttpKernel\Exception\HttpException;
27. use Symfony\Component\Routing\RouterInterface;
28. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
29. use Symfony\Component\Yaml\Yaml;
30. use Twig\Environment;
31. use Twig\Error\LoaderError;
32. use Twig\Error\RuntimeError;
33. use Twig\Error\SyntaxError;
35. class Access
36. {
37.     private Environment $twig;
38.     private $adminListUrls;
39.     private AdvertisingManagement $advertiserService;
40.     private AdvertiserRightService $advertiserRightService;
41.     private $anonListUrls;
42.     private $authListUrls;
43.     private AuthorizationCheckerInterface $authorizationChecker;
44.     private EntityManagerInterface $entityManager;
45.     private RouterInterface $routerService;
46.     private UserService $userService;
47.     private RequestStack $requestStack;
48.     private ?Request $request = null;
49.     private CustomSecurityLoader $customSecurityLoader;
50.     private string $staciSubDomain;
52.     public function __construct(AdvertiserRightService $advertiserRightService, UserService $userService, AdvertisingManagement $advertiser, Environment $twig, AuthorizationCheckerInterface $authorizationChecker, EntityManagerInterface $entityManager, RouterInterface $router, RequestStack $requestStack, CustomSecurityLoader $customSecurityLoader, string $staciSubDomain)
53.     {
54.         $this->twig = $twig;
55.         $this->adminListUrls = [];
56.         $this->advertiserService = $advertiser;
57.         $this->advertiserRightService = $advertiserRightService;
58.         $this->anonListUrls = [];
59.         $this->authListUrls = [];
60.         $this->authorizationChecker = $authorizationChecker;
61.         $this->customSecurityLoader = $customSecurityLoader;
62.         $this->entityManager = $entityManager;
63.         $this->parseSecurityYaml();
64.         $this->requestStack = $requestStack;
65.         $this->request = $requestStack->getCurrentRequest();
66.         $this->routerService = $router;
67.         $this->userService = $userService;
68.         $this->staciSubDomain = $staciSubDomain;
69.     }
71.     public function getAnonListUrls(): array
72.     {
73.         return $this->anonListUrls;
74.     }
76.     public function getAuthListUrls(): array
77.     {
78.         return $this->authListUrls;
79.     }
81.     public function getAdminListUrls(): array
82.     {
83.         return $this->adminListUrls;
84.     }
86.     public function check(string $action, object|null $entity = null): bool
87.     {
88.         $currentAdvertiser = $advertiser = $this->advertiserService->getCurrentAdvertiserByDomain();
89.         $user = $this->userService->getUser();
90.         if ($user === null) {
91.             $scheme = $this->requestStack->getCurrentRequest() ? $this->requestStack->getCurrentRequest()->getScheme() : 'http';
92.             $response = new RedirectResponse($scheme . '://' . $this->getDefaultUrl());
93.             $response->send();
94.         }
95.         $haveToSwitchAdvertiser = false;
96.         if ($user instanceof User && $advertiser instanceof Advertiser) {
97.             $isGood = $this->userService->isUserAdvertiser($currentAdvertiser, $user);
98.             if (false === $isGood) {
99.                 $userAdvertiser = $user->getAdvertiser();
100.                 if ($userAdvertiser instanceof Advertiser) {
101.                     $haveToSwitchAdvertiser = true;
102.                 }
103.             } elseif (
104.                 $this->requestStack->getSession()->get('advertiser') === null
105.                 || ($currentAdvertiser instanceof Advertiser && $this->requestStack->getSession()->get('advertiser') !== null && $currentAdvertiser->getId() !== $this->requestStack->getSession()->get('advertiser'))
106.             ) {
107.                 $this->writeRightInSession($user, $advertiser, null);
108.             }
109.         }
111.         if (true === $haveToSwitchAdvertiser && isset($userAdvertiser) && $userAdvertiser instanceof Advertiser) {
112.             $scheme = $this->requestStack->getCurrentRequest() ? $this->requestStack->getCurrentRequest()->getScheme() : 'http';
113.             $requestUri = $this->requestStack->getMainRequest()->server->get('REQUEST_URI');
114.             $requestUriCleaned = preg_replace('/\?.*/', '', (string) $requestUri);
115.             $redirectUrl = $scheme . '://' . $userAdvertiser->getSubdomain() . $this->requestStack->getMainRequest()->server->get('COOKIE_DOMAIN') . $requestUriCleaned;
116.             $response = new RedirectResponse($redirectUrl);
118.             $response->send();
119.         }
121.         if ($entity !== null) {
122.             if (
123.                 (method_exists($entity, 'getAdvertiser') && $entity->getAdvertiser() !== null && $entity->getAdvertiser() !== $currentAdvertiser)
124.                 || ($entity instanceof OperationOrder && $entity->getOperation()->getAdvertiser() !== $currentAdvertiser)
125.                 || ($entity instanceof Quota && $entity->getOperation()->getAdvertiser() !== $currentAdvertiser)
126.                 || ($entity instanceof OperationOrder && $user->getIsAgency() === true && $this->agencyCanManageOrder($entity, $user) === false)
127.                 || ($entity instanceof Operation && $user->getIsAgency() === true && $this->agencyCanManageOperation($entity, $user) === false)
128.             ) {
129.                 throw new HttpException(403, 'access denied');
130.             }
131.         }
133.         $this->requestStack->getSession()->set('fixRaceCondition', true);
134.         $isGranted = $this->authorizationChecker->isGranted($action, $entity);
135.         if (false === $isGranted || $this->userService->userHaveRole($user, $advertiser) === false) {
136.             throw new HttpException(403, 'access denied');
137.         }
139.         return $isGranted;
140.     }
142.     public function checkUrl(string $path): bool|string
143.     {
144.         $route = $path;
145.         $rightValue = false;
146.         try {
147.             $route = $this->routerService->match($path)['_route'];
148.         } catch (\Exception) {
149.         }
150.         foreach ($this->anonListUrls as $url) {
151.             if (preg_match('!' . $url . '!', (string) $route)) {
152.                 return true;
153.             }
154.         }
156.         if (true === $this->requestStack->getSession()->get('advertiserAdmin') || true === $this->userService->isAdmin(null)) {
157.             return true;
158.         }
160.         foreach ($this->adminListUrls as $url) {
161.             if (preg_match('!' . $url . '!', (string) $route)) {
162.                 return false;
163.             }
164.         }
166.         if (true === $this->requestStack->getSession()->get('canAccessAdvertiser')) {
167.             $advertiser = $this->advertiserService->getCurrentAdvertiser();
168.             $defaultAdvertiser = $this->advertiserService->getDefaultAdvertiser();
169.             if (!($advertiser instanceof Advertiser)) {
170.                 return false;
171.             }
173.             if ($route === 'index' && $advertiser !== $defaultAdvertiser) {
174.                 return true;
175.             }
176.             $user = $this->userService->getUser();
177.             if (!($user instanceof User)) {
178.                 return false;
179.             }
180.             $rightName = null;
181.             $userRole = $user->getRole();
182.             if ($userRole instanceof Role) {
183.                 $rightName = 'p_' . $userRole->getId() . '_' . $route . '_view';
184.                 $rightValue = $this->requestStack->getSession()->get($rightName);
185.             }
186.             if (true === $rightValue || '1' === $rightValue) {
187.                 if ('p_operation_quota_view' === $rightName && str_ends_with($path, '/edit/quota')) {
188.                     if (null !== $user->getCategories()) {
189.                         $rightValue = false;
190.                         $explodedPath = explode('/', $path);
191.                         $operation = $this->entityManager->getRepository(Operation::class)->findOneBy([
192.                             'id' => $explodedPath[2],
193.                         ]);
195.                         if (null !== $operation && !empty($operation->getCategories()->toArray())) {
196.                             foreach ($user->getCategories() as $category) {
197.                                 if (\in_array($category, $operation->getCategories()->toArray(), true)) {
198.                                     $rightValue = true;
199.                                     break;
200.                                 }
201.                             }
202.                         } else {
203.                             $rightValue = true;
204.                         }
205.                     }
207.                     if (null !== $user->getBusinessUnits() && !empty($user->getBusinessUnits()->toArray())) {
208.                         $rightValue = false;
209.                         $explodedPath = explode('/', $path);
210.                         $operation = $this->entityManager->getRepository(Operation::class)->findOneBy([
211.                             'id' => $explodedPath[2],
212.                         ]);
214.                         if (null !== $operation && !empty($operation->getBusinessUnits()->toArray())) {
215.                             foreach ($user->getBusinessUnits()->toArray() as $buKey => $businessUnit) {
216.                                 if (\in_array($businessUnit, $operation->getBusinessUnits()->toArray(), true)) {
217.                                     $rightValue = true;
218.                                 }
219.                             }
220.                         } else {
221.                             $rightValue = true;
222.                         }
223.                     }
224.                 }
225.             } else {
226.                 $rightValue = false;
227.             }
228.         }
230.         return $rightValue;
231.     }
233.     /**
234.      * @param User|string|array|null $user
235.      * @param object|string          $entity
236.      */
237.     public function checkEntityRight(mixed $user, string $action, mixed $entity): mixed
238.     {
239.         if (!\is_object($user)) {
240.             $user = $this->userService->getUser();
241.         }
243.         if ('delete' === $action && $entity instanceof Advertiser) {
244.             if ($this->advertiserService->isDefaultAdvertiser($entity)) {
245.                 return false;
246.             }
247.         }
249.         if ('delete' === $action && $entity instanceof Role) {
250.             if (
251.                 ($entity->getIsAgency() === true && $this->userService->isAdmin($user) !== true)
252.                 || ($entity->getIsAdmin() === true && $this->userService->isAdmin($user) !== true)
253.             ) {
254.                 return false;
255.             }
256.         }
258.         $acces = $isAdmin = false;
260.         if (\is_object($entity)) {
261.             $entityName = basename(str_replace('\\', '/', $entity::class));
262.         } elseif (\is_array($entity) && \array_key_exists('entityName', $entity) && \array_key_exists('id', $entity)) {
263.             $entityName = $entity['entityName'];
264.             $className = 'App\Entity\\' . $entityName;
265.             /** @var class-string $className */
266.             $entity = $this->entityManager->getRepository($className)->findOneBy(['id' => $entity['id']]);
267.         } else {
268.             $entityName = $entity;
269.         }
271.         $entityName = strtolower($entityName);
272.         $entityName = str_replace('_', '', $entityName);
273.         if (\in_array($entityName, ['operationorderrefrigeratorbin', 'operationorderanimation', 'operationorderfurniture'], true)) {
274.             $entityName = 'operationorder';
275.         }
277.         if (\in_array($entityName, ['operationrefrigeratorbin', 'operationanimation', 'operationfurniture'], true)) {
278.             $entityName = 'operation';
279.         }
281.         if (true === $this->requestStack->getSession()->get('advertiserAdmin')) {
282.             return true;
283.         }
285.         $advertiser = $this->advertiserService->getCurrentAdvertiser();
286.         if ('create' !== $action && $user instanceof User && !$this->canAccessEntityInstance($advertiser, $entity, $user)) {
287.             return false;
288.         }
290.         $rightName = '';
291.         if (true === $this->requestStack->getSession()->get('canAccessAdvertiser')) {
292.             $rightValue = null;
293.             $userRole = $user->getRole();
294.             if ($userRole instanceof Role) {
295.                 $rightName = 'e_' . $userRole->getId() . '_' . $entityName . '_' . $action;
296.                 $rightValue = $this->requestStack->getSession()->get($rightName);
297.             }
299.             if (null !== $rightValue) {
300.                 if ('operationorder' === $entityName) {
301.                     if ($entity instanceof OperationOrder) {
302.                         $operationOrderStep = $entity->getStep();
303.                         if (\in_array($action, ['delete', 'edit'], true) && \in_array($operationOrderStep, ['abandonned', 'canceled', 'finished', 'finishedProblem'], true)) {
304.                             return false;
305.                         }
306.                     }
307.                 }
309.                 return $rightValue;
310.             }
311.             $advertiser = $this->advertiserService->getCurrentAdvertiser();
312.             if (!$advertiser instanceof Advertiser) {
313.                 return false;
314.             }
315.             $writed = $this->writeRightInSession($user, $advertiser, $rightName);
316.             if (true === $writed) {
317.                 $rightValue = $this->requestStack->getSession()->get($rightName);
318.                 if (null !== $rightValue) {
319.                     return $rightValue;
320.                 }
322.                 return false;
323.             }
324.         }
326.         return $acces;
327.     }
329.     public function getDefaultUrl(): string
330.     {
331.         $user = $this->userService->getUser();
332.         $path = '';
333.         if (!$user instanceof User) {
334.             $requestUri = $this->requestStack->getMainRequest()->server->get('REQUEST_URI');
335.             $requestUriCleaned = preg_replace('/\?.*/', '', (string) $requestUri);
336.             if (\in_array('user_resetpassword', $this->routerService->match($requestUriCleaned), true)) {
337.                 $path = '';
338.             } else {
339.                 $path = '/login';
340.                 $this->setRgoto($requestUri);
341.             }
342.             $domain = $this->advertiserService->getSubdomain();
343.         } else {
344.             $userAdvertiser = $user->getAdvertiser();
345.             if ($userAdvertiser->getStatus() === false) {
346.                 $path = '/logout';
347.                 $domain = $this->advertiserService->getSubdomain();
348.             } else {
349.                 $domain = $userAdvertiser->getSubdomain();
350.             }
351.         }
353.         if ($this->advertiserService->getSubdomain() !== $this->staciSubDomain && $domain === $this->staciSubDomain) {
354.             return preg_replace('!' . $this->advertiserService->getSubdomain() . '.!', '', (string) $this->request->server->get('HTTP_HOST')) . $path;
355.         }
356.         if ($this->advertiserService->getSubdomain() === $this->staciSubDomain && $domain !== $this->staciSubDomain) {
357.             return $domain . '.' . $this->request->server->get('HTTP_HOST') . $path;
358.         }
360.         return preg_replace('!' . $this->advertiserService->getSubdomain() . '!', (string) $domain, (string) $this->request->server->get('HTTP_HOST')) . $path;
361.     }
363.     /**
364.      * @param User|string|null       $user
365.      * @param Advertiser|string|null $advertiser
366.      *
367.      * @return bool|mixed|string
368.      */
369.     public function getFunctionalityRight($user, $advertiser, string $functionalityName)
370.     {
371.         $result = false;
372.         if (!$user instanceof User) {
373.             $user = $this->userService->getUser();
374.         }
376.         if (!$advertiser instanceof Advertiser) {
377.             $advertiser = $this->advertiserService->getCurrentAdvertiser();
378.         }
380.         if (!$user instanceof User || !$advertiser instanceof Advertiser) {
381.             return $result;
382.         }
384.         $userRoleID = '';
385.         if (false === $this->userService->isAdmin($user)) {
386.             $role = $user->getRole();
387.             if ($role instanceof Role) {
388.                 $userRoleID = $role->getId();
389.             }
390.         } else {
391.             return true;
392.         }
394.         $rightName = 'f_' . $userRoleID . '_' . $functionalityName . '_do';
395.         $rightValue = $this->requestStack->getSession()->get($rightName);
396.         if (null !== $rightValue) {
397.             $result = $rightValue;
398.         } else {
399.             $writed = $this->writeRightInSession($user, $advertiser, $rightName);
400.             if (true === $writed) {
401.                 $result = $this->requestStack->getSession()->get($rightName);
402.             }
403.         }
405.         return $result;
406.     }
408.     public function userCanUseApiAgencyOrder(OperationOrder $operationOrder, User $user): bool
409.     {
410.         $result = false;
411.         if (true === $user->getIsAgency()) {
412.             if ($operationOrder->getAgency()->getId() === $user->getAgency()->getId()) {
413.                 $result = true;
414.             }
415.         }
417.         return $result;
418.     }
420.     public function agencyCanManageOrder(OperationOrder $operationOrder, ?User $user): bool
421.     {
422.         $result = false;
424.         if (!$user instanceof User) {
425.             $user = $this->userService->getUser();
426.         }
428.         if (true === $user->getIsAgency() && $operationOrder->getAgency() === $user->getAgency()) {
429.             $result = true;
430.         }
432.         return $result;
433.     }
435.     public function agencyCanManageOrderAction(OperationOrder $operationOrder, User $user, string $workflowName): bool
436.     {
437.         $result = false;
438.         if ($this->agencyCanManageOrder($operationOrder, $user) === true) {
439.             $agency = $user->getAgency();
440.             if ($agency instanceof Agency) {
441.                 $placesList = $this->getAgencyPlaceListAction($user->getAdvertiser(), $agency, $workflowName);
442.                 if (\in_array($operationOrder->getStep(), $placesList, true)) {
443.                     $result = true;
444.                 }
445.             }
446.         }
448.         return $result;
449.     }
451.     public function agencyCanManageOperation(Operation $operation, ?User $user): bool
452.     {
453.         $result = false;
455.         if (!$user instanceof User) {
456.             $user = $this->userService->getUser();
457.         }
459.         if (true === $user->getIsAgency() && $operation->getAgencies()->contains($user->getAgency())) {
460.             $result = true;
461.         }
463.         return $result;
464.     }
466.     public function canModerateOrder(OperationOrder $operationOrder, ?User $user): bool
467.     {
468.         $result = false;
469.         if (!$user instanceof User) {
470.             $user = $this->userService->getUser();
471.         }
473.         $advertiser = $operationOrder->getOperation()->getAdvertiser();
474.         $rightToModerate = $this->getFunctionalityRight($user, $advertiser, 'canModerateOrder');
475.         if (
476.             $user->getAdvertiser() === $advertiser
477.             && ($rightToModerate === true || $rightToModerate === 'yes')
478.             && \in_array($operationOrder->getStep(), ['toModerate', 'updateToModerate'], true)
479.         ) {
480.             $result = true;
481.         }
483.         return $result;
484.     }
486.     public function render(string $path, array $parameters, int $status = 200, Advertiser $advertiser = null): Response
487.     {
488.         if ($advertiser === null) {
489.             $advertiser = $this->advertiserService->getCurrentAdvertiser();
490.         }
491.         try {
492.             return new Response($this->twig->render(preg_replace('!\\.!', '-' . $advertiser->getId() . '.', $path, 1), $parameters), $status);
493.         } catch (LoaderError|RuntimeError|SyntaxError $e) {
494.             return new Response($this->twig->render($path, $parameters), $status);
495.         }
496.     }
498.     public function writeRightInSession(User $user, Advertiser $advertiser, string $rightName = null): bool
499.     {
500.         $writed = false;
502.         $this->requestStack->getSession()->set('advertiserAdmin', false);
503.         $this->requestStack->getSession()->set('canAccessAdvertiser', false);
504.         if (null !== $rightName && !empty($rightName)) {
505.             $this->requestStack->getSession()->set($rightName, false);
506.         }
508.         $this->requestStack->getSession()->set('advertiser', $advertiser->getId());
509.         $this->requestStack->getSession()->set('user', $user->getId());
511.         $operationFamily = $this->getUserOperationFamily($advertiser, $user);
512.         if ($operationFamily instanceof OperationFamily) {
513.             $this->requestStack->getSession()->set('operationFamily', $operationFamily);
514.         }
516.         if ($this->userService->isAdvertiserAdmin()) {
517.             $this->requestStack->getSession()->set('advertiserAdmin', true);
518.             $this->requestStack->getSession()->set('canAccessAdvertiser', true);
519.             $writed = true;
520.         } else {
521.             $role = $user->getRole();
522.             if ($role instanceof Role) {
523.                 $this->requestStack->getSession()->set('canAccessAdvertiser', true);
524.                 if (null === $rightName) {
525.                     $rights = $this->advertiserRightService->getRightsByRole($role);
526.                     foreach ($rights as $rightName => $rightValue) {
527.                         $this->requestStack->getSession()->set($rightName, $rightValue);
528.                         $writed = true;
529.                     }
530.                 } else {
531.                     $rightValue = $this->advertiserRightService->getRightByName($rightName);
532.                     if (!empty($rightValue)) {
533.                         $this->requestStack->getSession()->set($rightName, $rightValue);
534.                         $writed = true;
535.                     }
536.                 }
537.             }
538.         }
540.         return $writed;
541.     }
543.     public function canMakeOrderComment(OperationOrder $operationOrder): bool
544.     {
545.         $result = false;
546.         if ('finished' === $operationOrder->getStep()) {
547.             $actualTime = new \DateTime();
548.             if ($operationOrder instanceof OperationOrderAnimation) {
549.                 $magActionDates = $operationOrder->getMagActionDates();
550.                 if (null !== $magActionDates && !empty($magActionDates->toArray())) {
551.                     $result = true;
552.                     foreach ($magActionDates->toArray() as $key => $date) {
553.                         if ($date->getDate()->modify('+10 day') < $actualTime) {
554.                             $result = false;
555.                         }
556.                     }
557.                 }
558.             } elseif ($operationOrder instanceof OperationOrderRefrigeratorBin || $operationOrder instanceof OperationOrderFurniture) {
559.                 $recoveryDate = $operationOrder->getRecoveryDate();
560.                 if ($recoveryDate !== null && $recoveryDate->modify('+10 day') > $actualTime) {
561.                     $result = true;
562.                 }
563.             }
564.         }
566.         return $result;
567.     }
569.     public function getRouteFromPath(string $path): string
570.     {
571.         $route = '';
572.         try {
573.             $route = $this->routerService->match($path)['_route'];
574.         } catch (\Exception) {
575.             // return false;
576.         }
578.         return $route;
579.     }
581.     public function getMainRequest(): null|Request
582.     {
583.         return $this->requestStack->getMainRequest();
584.     }
586.     /**
587.      * @param Advertiser       $advertiser
588.      * @param object|string    $entity
589.      * @param \App\Entity\User $user
590.      */
591.     public function canAccessEntityInstance($advertiser, $entity, $user): bool
592.     {
593.         if (\is_object($entity)) {
594.             $entityName = basename(str_replace('\\', '/', $entity::class));
595.         } else {
596.             $entityName = $entity;
597.         }
598.         $entityName = strtolower($entityName);
599.         $entityName = str_replace('_', '', $entityName);
601.         $speEntity = ['operationorder', 'operationorderComment', 'operationorderquotaversion', 'operationorderspeaker', 'operationoroperationorderStepversionder', 'quota', 'user'];
602.         $acces = true;
604.         if (\in_array($entityName, $speEntity, true)) {
605.             if (
606.                 ($entity instanceof OperationOrder && $entity->getOperation()->getAdvertiser() !== $advertiser)
607.                 || ($entity instanceof OperationOrderComment && $entity->getOperationOrder()->getOperation()->getAdvertiser() !== $advertiser)
608.                 || ($entity instanceof OperationOrderQuotaVersion && $entity->getOperationOrder()->getOperation()->getAdvertiser() !== $advertiser)
609.                 || ($entity instanceof OperationOrderStepVersion && $entity->getOperationOrder()->getOperation()->getAdvertiser() !== $advertiser)
610.                 || ($entity instanceof Quota && $entity->getOperation()->getAdvertiser() !== $advertiser)
611.                 || ($entity instanceof User && !$this->userService->isUserAdvertiser($advertiser, $user))
612.             ) {
613.                 $acces = false;
614.             }
615.         } elseif (\is_object($entity) && method_exists($entity, 'getAdvertiser') && $entity->getAdvertiser() !== $advertiser) {
616.             $acces = false;
617.         }
619.         return $acces;
620.     }
622.     public function getAgencyPlaceDatas(Advertiser $advertiser = null, Agency $agency, string $workflowName): mixed
623.     {
624.         if (null === $advertiser) {
625.             $advertiser = $this->advertiserService->getCurrentAdvertiser();
626.         }
627.         $advertiserRef = $advertiser->getRef();
629.         $file = sprintf('%s/config/advertisersConfig/' . $advertiserRef . '/' . $workflowName . '_agency.yaml', __DIR__ . '/../..');
630.         if (!file_exists($file)) {
631.             $file = sprintf('%s/config/advertisersConfig/default/' . $workflowName . '_agency.yaml', __DIR__ . '/../..');
632.         }
634.         return Yaml::parseFile($file);
635.     }
637.     public function getAgencyPlaceListShow(Advertiser $advertiser, Agency $agency, string $workflowName): array
638.     {
639.         $placeList = [];
640.         $placesDatas = $this->getAgencyPlaceDatas($advertiser, $agency, $workflowName);
641.         if (\array_key_exists('show', $placesDatas)) {
642.             $placeList = $placesDatas['show'];
643.         }
645.         return $placeList;
646.     }
648.     public function getAgencyPlaceListEdit(Advertiser $advertiser, Agency $agency, string $workflowName): array
649.     {
650.         $placeList = [];
651.         $placesDatas = $this->getAgencyPlaceDatas($advertiser, $agency, $workflowName);
652.         if (\array_key_exists('edit', $placesDatas)) {
653.             $placeList = $placesDatas['edit'];
654.         }
656.         return $placeList;
657.     }
659.     public function getAgencyPlaceListAction(Advertiser $advertiser, Agency $agency, string $workflowName): array
660.     {
661.         $placeList = [];
662.         $placesDatas = $this->getAgencyPlaceDatas($advertiser, $agency, $workflowName);
663.         if (\array_key_exists('action', $placesDatas)) {
664.             $placeList = $placesDatas['action'];
665.         }
667.         return $placeList;
668.     }
670.     public function getUserOperationFamily(Advertiser $advertiser, User $user): ?OperationFamily
671.     {
672.         $operationFamily = $user->getOperationFamily();
673.         if ($operationFamily === null || $operationFamily->getAdvertiser() !== $advertiser) {
674.             $operationFamily = $this->entityManager->getRepository(OperationFamily::class)->findOneBy([
675.                 'advertiser' => $advertiser,
676.             ]);
677.         }
679.         return $operationFamily;
680.     }
682.     private function parseSecurityYaml(): void
683.     {
684.         $voters = $this->customSecurityLoader->load('voters_path');
685.         $this->anonListUrls = $voters['anon'];
686.         $this->authListUrls = $voters['auth'];
687.         $this->adminListUrls = $voters['admin'];
688.     }
690.     private function setRgoto(string $url): void
691.     {
692.         $sfSession = $this->requestStack->getSession();
693.         $sfSession->set('rgoto', $url);
694.         $sfSession->save();
695.     }
696. }