Add hydrator role

Author: Sigri44

src/Controller/DefiController.php

@@ -90,7 +90,7 @@ public function getTokenList(Request $request): JsonResponse
      */
     public function generateTokenSymbol(Request $request): JsonResponse
     {
-        $this->authenticatorService->checkAdminRights($this->getApiToken($request));
+        $this->authenticatorService->checkHydratorRights($this->getApiToken($request));
 
         return $this->defiService->generateTokenSymbol();
     }
@@ -112,7 +112,7 @@ public function generateTokenSymbol(Request $request): JsonResponse
      */
     public function generateLpPair(Request $request): JsonResponse
     {
-        $this->authenticatorService->checkAdminRights($this->getApiToken($request));
+        $this->authenticatorService->checkHydratorRights($this->getApiToken($request));
 
         return $this->defiService->generateLpPairToken();
     }

src/Service/AuthenticatorService.php

@@ -35,6 +35,22 @@ public function checkAdminRights(?string $apiKey)
         }
     }
 
+    /**
+     * Check hydrator rights.
+     *
+     * @param string|null $apiKey
+     */
+    public function checkHydratorRights(?string $apiKey)
+    {
+        if (!empty($apiKey)) {
+            $application = $this->getApplicationByToken($apiKey);
+        }
+
+        if (empty($apiKey) || !$this->applicationHaveHydratorRights($application)) {
+            throw new HttpException(Response::HTTP_FORBIDDEN, "Unauthorized");
+        }
+    }
+
     /**
      * Get application by token.
      *
@@ -72,6 +88,18 @@ public function applicationHaveAdminRights(Application $application): bool
         return in_array("ROLE_ADMIN", $application->getUser()->getRoles());
     }
 
+    /**
+     * Check if Application have hydrator rights.
+     *
+     * @param Application $application
+     *
+     * @return bool
+     */
+    public function applicationHaveHydratorRights(Application $application): bool
+    {
+        return in_array("ROLE_HYDRATOR", $application->getUser()->getRoles());
+    }
+
     /**
      * Check user authentication.
      *

src/Service/UserService.php

@@ -41,6 +41,9 @@ public function userRegistration(Request $request): array
             case 'isFreemium':
                 array_push($roles, "ROLE_FREEMIUM");
                 break;
+            case 'isHydrator':
+                array_push($roles, "ROLE_HYDRATOR");
+                break;
         }
 
         $user = $this->checkUserExistence($request->get('email'));

templates/admin/registerApiUser.html.twig

@@ -41,6 +41,12 @@
                         Freemium
                     </label>
                 </div>
+                <div class="form-check form-check-inline">
+                    <input class="form-check-input" type="radio" value="isHydrator" name="quotaRole" id="isHydrator">
+                    <label class="form-check-label" for="isHydrator">
+                        Hydrator
+                    </label>
+                </div>
             </div>
             <div class="form-group">
                 <input type="text" class="form-control" id="formGroupUsername" name="username" placeholder="Username" required>