bug #6778 disable switch if user has no permission to edit (IndraGunawan)

This PR was merged into the 4.x branch.

Discussion
----------

disable switch if user has no permission to edit

This PR aims to make the switch completely disabled on index page if the edit action is disabled or user does not have enough permission to execute edit action

```php
public function configureFields(string $pageName): iterable
    {
        return [
            BooleanField::new('isPublished'),
        ];
    }

public function configureActions(Actions $actions): Actions
    {
        return $actions
            ->disable(Action::EDIT) // completely disable EDIT action
            ->setPermission(Action::EDIT, 'ROLE_ADMIN') // minimum role to execute EDIT action
        ;
    }
```

current condition, the switch is toggleable when user clicks it then it creates an ajax request and gets 403 then switch disabled

---

I'm a little worried about reordering `BooleanConfigurator` constructor but if it does not reorder I get a deprecated message
```
Deprecated: Optional parameter $csrfTokenManager declared before required parameter $authChecker is implicitly treated as a required parameter
```

Commits
-------

ff1faca disable switch if user has no permission to edit

Author: javiereguiluz

config/services.php

@@ -339,7 +339,8 @@
 
         ->set(BooleanConfigurator::class)
             ->arg(0, service(AdminUrlGenerator::class))
-            ->arg(1, new Reference('security.csrf.token_manager', ContainerInterface::NULL_ON_INVALID_REFERENCE))
+            ->arg(1, new Reference(AuthorizationChecker::class))
+            ->arg(2, new Reference('security.csrf.token_manager', ContainerInterface::NULL_ON_INVALID_REFERENCE))
 
         ->set(CollectionConfigurator::class)
 

src/Field/Configurator/BooleanConfigurator.php

@@ -9,20 +9,20 @@
 use EasyCorp\Bundle\EasyAdminBundle\Dto\FieldDto;
 use EasyCorp\Bundle\EasyAdminBundle\Field\BooleanField;
 use EasyCorp\Bundle\EasyAdminBundle\Router\AdminUrlGeneratorInterface;
+use EasyCorp\Bundle\EasyAdminBundle\Security\Permission;
+use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
 use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
 
 /**
  * @author Javier Eguiluz <javier.eguiluz@gmail.com>
  */
 final class BooleanConfigurator implements FieldConfiguratorInterface
 {
-    private AdminUrlGeneratorInterface $adminUrlGenerator;
-    private ?CsrfTokenManagerInterface $csrfTokenManager;
-
-    public function __construct(AdminUrlGeneratorInterface $adminUrlGenerator, ?CsrfTokenManagerInterface $csrfTokenManager = null)
-    {
-        $this->adminUrlGenerator = $adminUrlGenerator;
-        $this->csrfTokenManager = $csrfTokenManager;
+    public function __construct(
+        private readonly AdminUrlGeneratorInterface $adminUrlGenerator,
+        private readonly AuthorizationCheckerInterface $authChecker,
+        private readonly ?CsrfTokenManagerInterface $csrfTokenManager = null,
+    ) {
     }
 
     public function supports(FieldDto $field, EntityDto $entityDto): bool
@@ -37,7 +37,9 @@ public function configure(FieldDto $field, EntityDto $entityDto, AdminContext $c
         if ($isRenderedAsSwitch) {
             $crudDto = $context->getCrud();
 
-            if (null !== $crudDto && null !== $entityDto->getPrimaryKeyValue()) {
+            $hasEditPermission = $this->authChecker->isGranted(Permission::EA_EXECUTE_ACTION, ['action' => Action::EDIT, 'entity' => $entityDto]);
+
+            if (null !== $crudDto && null !== $entityDto->getPrimaryKeyValue() && $hasEditPermission) {
                 $toggleUrl = $this->adminUrlGenerator
                     ->setController($crudDto->getControllerFqcn())
                     ->setAction(Action::EDIT)
@@ -48,6 +50,10 @@ public function configure(FieldDto $field, EntityDto $entityDto, AdminContext $c
                 $field->setCustomOption(BooleanField::OPTION_TOGGLE_URL, $toggleUrl);
             }
 
+            if (Action::INDEX === $crudDto->getCurrentAction() && !$hasEditPermission) {
+                $field->setFormTypeOptionIfNotSet('disabled', true);
+            }
+
             $field->setFormTypeOptionIfNotSet('label_attr.class', 'checkbox-switch');
             $field->setCssClass($field->getCssClass().' has-switch');
         }