BlockContentAccessControlHandler.php in Drupal 8
File
core/modules/block_content/src/BlockContentAccessControlHandler.php
View source
<?php
namespace Drupal\block_content;
use Drupal\block_content\Access\DependentAccessInterface;
use Drupal\block_content\Event\BlockContentGetDependencyEvent;
use Drupal\Core\Access\AccessResult;
use Drupal\Core\Entity\EntityHandlerInterface;
use Drupal\Core\Entity\EntityInterface;
use Drupal\Core\Entity\EntityAccessControlHandler;
use Drupal\Core\Entity\EntityTypeInterface;
use Drupal\Core\Session\AccountInterface;
use Symfony\Component\DependencyInjection\ContainerInterface;
use Symfony\Component\EventDispatcher\EventDispatcherInterface;
class BlockContentAccessControlHandler extends EntityAccessControlHandler implements EntityHandlerInterface {
protected $eventDispatcher;
public function __construct(EntityTypeInterface $entity_type, EventDispatcherInterface $dispatcher) {
parent::__construct($entity_type);
$this->eventDispatcher = $dispatcher;
}
public static function createInstance(ContainerInterface $container, EntityTypeInterface $entity_type) {
return new static($entity_type, $container
->get('event_dispatcher'));
}
protected function checkAccess(EntityInterface $entity, $operation, AccountInterface $account) {
if ($operation === 'view') {
$access = AccessResult::allowedIf($entity
->isPublished())
->orIf(AccessResult::allowedIfHasPermission($account, 'administer blocks'));
}
else {
$access = parent::checkAccess($entity, $operation, $account);
}
$access
->addCacheableDependency($entity);
if ($entity
->isReusable() === FALSE) {
if (!$entity instanceof DependentAccessInterface) {
throw new \LogicException("Non-reusable block entities must implement \\Drupal\\block_content\\Access\\DependentAccessInterface for access control.");
}
$dependency = $entity
->getAccessDependency();
if (empty($dependency)) {
$event = new BlockContentGetDependencyEvent($entity);
$this->eventDispatcher
->dispatch(BlockContentEvents::BLOCK_CONTENT_GET_DEPENDENCY, $event);
$dependency = $event
->getAccessDependency();
if (empty($dependency)) {
return AccessResult::forbidden("Non-reusable blocks must set an access dependency for access control.");
}
}
$access = $access
->andIf($dependency
->access($operation, $account, TRUE));
}
return $access;
}
}