Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/old/vendor/magento/module-customer/Model/Plugin/ |
<?php
/**
* Copyright © Magento, Inc. All rights reserved.
* See COPYING.txt for license details.
*/
namespace Magento\Customer\Model\Plugin;
use Closure;
use Magento\Customer\Model\Customer\AuthorizationComposite;
use Magento\Framework\Authorization;
/**
* Plugin around \Magento\Framework\Authorization::isAllowed
*
* Plugin to allow customer users to access resources with self permission
*/
class CustomerAuthorization
{
/**
* @var AuthorizationComposite
*/
private $authorizationComposite;
/**
* Inject dependencies.
* @param AuthorizationComposite $composite
*/
public function __construct(
AuthorizationComposite $composite
) {
$this->authorizationComposite = $composite;
}
/**
* Verify if to allow customer users to access resources with self permission
*
* @SuppressWarnings(PHPMD.UnusedFormalParameter)
* @param Authorization $subject
* @param Closure $proceed
* @param string $resource
* @param mixed $privilege
* @return bool
*/
public function aroundIsAllowed(
Authorization $subject,
Closure $proceed,
string $resource,
$privilege = null
) {
if ($this->authorizationComposite->isAllowed($resource, $privilege)) {
return true;
}
return $proceed($resource, $privilege);
}
}